Sm7435 Firmware

24 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-21385 HIGH POC KEV PATCH THREAT Act Now

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memory allocation, enabling local privilege escalation to kernel level. KEV-listed and patched, this vulnerability affects Qualcomm-based mobile devices and embedded systems, potentially impacting billions of Android devices globally.

Memory Corruption Wcn3990 Firmware Sa8155 Firmware Sw5100p Firmware Qcn9024 Firmware +222
NVD VulDB GitHub
CVSS 3.1
7.8
EPSS
0.4%
CVE-2025-59600 HIGH PATCH This Week

Memory Corruption when adding user-supplied data without checking available buffer space. [CVSS 7.8 HIGH]

Memory Corruption Fastconnect 6700 Firmware Qmp1000 Firmware Fastconnect 6200 Firmware Wcd9378 Firmware +156
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47385 HIGH This Week

Memory Corruption when accessing trusted execution environment without proper privilege check. [CVSS 7.8 HIGH]

Memory Corruption Wsa8845 Firmware Sar1165p Firmware Lemansau Firmware Qca9377 Firmware +87
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47383 HIGH This Week

5G Fixed Wireless Access Platform Firmware versions up to - contains a vulnerability that allows attackers to cryptographic issue when a VoWiFi call is triggered from UE (CVSS 7.2).

Information Disclosure Snapdragon 820am Firmware Video Collaboration Vc3 Platform Firmware Sw5100p Firmware Sm6250 Firmware +190
NVD
CVSS 3.1
7.2
EPSS
0.0%
CVE-2025-47373 HIGH This Week

Memory Corruption when accessing buffers with invalid length during TA invocation. [CVSS 7.8 HIGH]

Memory Corruption Qcm4490 Firmware Wcn3910 Firmware Sm7675 Firmware Sm8475p Firmware +179
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47371 MEDIUM This Month

5G Fixed Wireless Access Platform Firmware versions up to - is affected by reachable assertion (CVSS 6.5).

Denial Of Service Wcn3950 Firmware Snapdragon 7c Gen 2 Compute Platform Firmware Wcd9340 Firmware Wsa8830 Firmware +117
NVD
CVSS 3.1
6.5
EPSS
0.0%
CVE-2025-47398 HIGH PATCH This Week

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers. [CVSS 7.8 HIGH]

Industrial Memory Corruption Robotics Rb2 Firmware Sm7435 Firmware Smart Audio 400 Firmware +145
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47397 HIGH PATCH This Week

Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors. [CVSS 7.8 HIGH]

Memory Corruption Srv1h Firmware Qcs4490 Firmware Snapdragon 6 Gen 4 Mobile Firmware Snapdragon Ar1 Gen 1 Firmware +138
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47366 HIGH This Week

Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input. [CVSS 7.1 HIGH]

Information Disclosure Sw5100 Firmware Qcs9100 Firmware Wcn3950 Firmware Sa8145p Firmware +151
NVD
CVSS 3.1
7.1
EPSS
0.0%
CVE-2025-47396 HIGH PATCH This Week

Memory corruption occurs when a secure application is launched on a device with insufficient memory. [CVSS 7.8 HIGH]

Memory Corruption Snapdragon Ar1 Gen 1 Platform Firmware Wcd9395 Firmware Wcn3950 Firmware Wcn7750 Firmware +39
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47394 HIGH PATCH This Week

Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations. [CVSS 7.8 HIGH]

Memory Corruption Sg6150 Firmware Snapdragon 6 Gen 1 Mobile Platform Firmware Video Collaboration Vc1 Platform Firmware Wcn7881 Firmware +40
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47388 HIGH PATCH This Week

Memory corruption while passing pages to DSP with an unaligned starting address. [CVSS 7.8 HIGH]

Memory Corruption Sm6475 Firmware Fastconnect 6200 Firmware Wsa8845h Firmware Wcd9370 Firmware +40
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47369 MEDIUM PATCH This Month

Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID. [CVSS 5.5 MEDIUM]

Information Disclosure Snapdragon 660 Mobile Platform Firmware Snapdragon Xr2 5g Platform Firmware Sa6145p Firmware Snapdragon X55 5g Modem Rf System Firmware +154
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2025-47348 HIGH This Week

Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]

Memory Corruption Qca6696 Firmware Qamsrv1m Firmware Qam8620p Firmware Qca6688aq Firmware +181
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47346 HIGH This Week

Memory corruption while processing a secure logging command in the trusted application. [CVSS 7.8 HIGH]

Memory Corruption Sm4635 Firmware Wcn7881 Firmware Ar8035 Firmware Fastconnect 7800 Firmware +108
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47345 HIGH This Week

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

Information Disclosure Qca6797aq Firmware Sa7255p Firmware Wsa8832 Firmware Sa9000p Firmware +101
NVD
CVSS 3.1
8.4
EPSS
0.0%
CVE-2025-47339 HIGH This Week

Memory corruption while deinitializing a HDCP session. [CVSS 7.8 HIGH]

Memory Corruption Qca6174a Firmware Qca6678aq Firmware Qca9990 Firmware Qcn6274 Firmware +180
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-47334 MEDIUM PATCH This Month

Memory corruption while processing shared command buffer packet between camera userspace and kernel. [CVSS 6.7 MEDIUM]

Linux Memory Corruption Sm8635p Firmware Wcn7881 Firmware Sm6650 Firmware +132
NVD
CVSS 3.1
6.7
EPSS
0.0%
CVE-2025-47333 MEDIUM PATCH This Month

Memory corruption while handling buffer mapping operations in the cryptographic driver. [CVSS 6.6 MEDIUM]

Memory Corruption Snapdragon 778g 5g Mobile Platform Firmware Sa6150p Firmware Qam8650p Firmware Qfw7114 Firmware +217
NVD
CVSS 3.1
6.6
EPSS
0.0%
CVE-2025-47332 MEDIUM PATCH This Month

Memory corruption while processing a config call from userspace. [CVSS 6.7 MEDIUM]

Memory Corruption Wsa8815 Firmware Sm8635p Firmware Sm7635p Firmware Sm7550p Firmware +66
NVD
CVSS 3.1
6.7
EPSS
0.0%
CVE-2025-47331 MEDIUM PATCH This Month

Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]

Information Disclosure Ipq9048 Firmware Wsa8840 Firmware Qcm8550 Firmware Qca9888 Firmware +278
NVD
CVSS 3.1
6.1
EPSS
0.0%
CVE-2025-47330 MEDIUM PATCH This Month

Transient DOS while parsing video packets received from the video firmware. [CVSS 5.5 MEDIUM]

Denial Of Service Fastconnect 6700 Firmware Qca6574a Firmware Qca9377 Firmware Snapdragon X72 5g Modem Rf System Firmware +202
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2025-47317 HIGH This Month

Memory corruption due to global buffer overflow when a test command uses an invalid payload type. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Fastconnect 6200 Firmware Fastconnect 6700 Firmware Fastconnect 7800 Firmware Qcc5161 Firmware +49
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2025-27038 HIGH KEV THREAT Act Now

Qualcomm Adreno GPU drivers in Chrome contain a use-after-free vulnerability (CVE-2025-27038, CVSS 7.5) enabling memory corruption during graphics rendering. KEV-listed, this vulnerability can be triggered through Chrome on Android devices with Qualcomm chipsets, providing a kernel-level exploitation path from web content.

Memory Corruption Google Denial Of Service Fastconnect 7800 Firmware Smart Audio 400 Platform Firmware +41
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2026-21385
EPSS 0% CVSS 7.8
HIGH POC KEV PATCH THREAT Act Now

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memory allocation, enabling local privilege escalation to kernel level. KEV-listed and patched, this vulnerability affects Qualcomm-based mobile devices and embedded systems, potentially impacting billions of Android devices globally.

Memory Corruption Wcn3990 Firmware Sa8155 Firmware +224
NVD VulDB GitHub
CVE-2025-59600
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Memory Corruption when adding user-supplied data without checking available buffer space. [CVSS 7.8 HIGH]

Memory Corruption Fastconnect 6700 Firmware Qmp1000 Firmware +158
NVD
CVE-2025-47385
EPSS 0% CVSS 7.8
HIGH This Week

Memory Corruption when accessing trusted execution environment without proper privilege check. [CVSS 7.8 HIGH]

Memory Corruption Wsa8845 Firmware Sar1165p Firmware +89
NVD
CVE-2025-47383
EPSS 0% CVSS 7.2
HIGH This Week

5G Fixed Wireless Access Platform Firmware versions up to - contains a vulnerability that allows attackers to cryptographic issue when a VoWiFi call is triggered from UE (CVSS 7.2).

Information Disclosure Snapdragon 820am Firmware Video Collaboration Vc3 Platform Firmware +192
NVD
CVE-2025-47373
EPSS 0% CVSS 7.8
HIGH This Week

Memory Corruption when accessing buffers with invalid length during TA invocation. [CVSS 7.8 HIGH]

Memory Corruption Qcm4490 Firmware Wcn3910 Firmware +181
NVD
CVE-2025-47371
EPSS 0% CVSS 6.5
MEDIUM This Month

5G Fixed Wireless Access Platform Firmware versions up to - is affected by reachable assertion (CVSS 6.5).

Denial Of Service Wcn3950 Firmware Snapdragon 7c Gen 2 Compute Platform Firmware +119
NVD
CVE-2025-47398
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers. [CVSS 7.8 HIGH]

Industrial Memory Corruption Robotics Rb2 Firmware +147
NVD
CVE-2025-47397
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors. [CVSS 7.8 HIGH]

Memory Corruption Srv1h Firmware Qcs4490 Firmware +140
NVD
CVE-2025-47366
EPSS 0% CVSS 7.1
HIGH This Week

Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input. [CVSS 7.1 HIGH]

Information Disclosure Sw5100 Firmware Qcs9100 Firmware +153
NVD
CVE-2025-47396
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Memory corruption occurs when a secure application is launched on a device with insufficient memory. [CVSS 7.8 HIGH]

Memory Corruption Snapdragon Ar1 Gen 1 Platform Firmware Wcd9395 Firmware +41
NVD
CVE-2025-47394
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations. [CVSS 7.8 HIGH]

Memory Corruption Sg6150 Firmware Snapdragon 6 Gen 1 Mobile Platform Firmware +42
NVD
CVE-2025-47388
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Memory corruption while passing pages to DSP with an unaligned starting address. [CVSS 7.8 HIGH]

Memory Corruption Sm6475 Firmware Fastconnect 6200 Firmware +42
NVD
CVE-2025-47369
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID. [CVSS 5.5 MEDIUM]

Information Disclosure Snapdragon 660 Mobile Platform Firmware Snapdragon Xr2 5g Platform Firmware +156
NVD
CVE-2025-47348
EPSS 0% CVSS 7.8
HIGH This Week

Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]

Memory Corruption Qca6696 Firmware Qamsrv1m Firmware +183
NVD
CVE-2025-47346
EPSS 0% CVSS 7.8
HIGH This Week

Memory corruption while processing a secure logging command in the trusted application. [CVSS 7.8 HIGH]

Memory Corruption Sm4635 Firmware Wcn7881 Firmware +110
NVD
CVE-2025-47345
EPSS 0% CVSS 8.4
HIGH This Week

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

Information Disclosure Qca6797aq Firmware Sa7255p Firmware +103
NVD
CVE-2025-47339
EPSS 0% CVSS 7.8
HIGH This Week

Memory corruption while deinitializing a HDCP session. [CVSS 7.8 HIGH]

Memory Corruption Qca6174a Firmware Qca6678aq Firmware +182
NVD
CVE-2025-47334
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Memory corruption while processing shared command buffer packet between camera userspace and kernel. [CVSS 6.7 MEDIUM]

Linux Memory Corruption Sm8635p Firmware +134
NVD
CVE-2025-47333
EPSS 0% CVSS 6.6
MEDIUM PATCH This Month

Memory corruption while handling buffer mapping operations in the cryptographic driver. [CVSS 6.6 MEDIUM]

Memory Corruption Snapdragon 778g 5g Mobile Platform Firmware Sa6150p Firmware +219
NVD
CVE-2025-47332
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

Memory corruption while processing a config call from userspace. [CVSS 6.7 MEDIUM]

Memory Corruption Wsa8815 Firmware Sm8635p Firmware +68
NVD
CVE-2025-47331
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]

Information Disclosure Ipq9048 Firmware Wsa8840 Firmware +280
NVD
CVE-2025-47330
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Transient DOS while parsing video packets received from the video firmware. [CVSS 5.5 MEDIUM]

Denial Of Service Fastconnect 6700 Firmware Qca6574a Firmware +204
NVD
CVE-2025-47317
EPSS 0% CVSS 7.8
HIGH This Month

Memory corruption due to global buffer overflow when a test command uses an invalid payload type. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Fastconnect 6200 Firmware Fastconnect 6700 Firmware +51
NVD
CVE-2025-27038
EPSS 1% CVSS 7.5
HIGH KEV THREAT Act Now

Qualcomm Adreno GPU drivers in Chrome contain a use-after-free vulnerability (CVE-2025-27038, CVSS 7.5) enabling memory corruption during graphics rendering. KEV-listed, this vulnerability can be triggered through Chrome on Android devices with Qualcomm chipsets, providing a kernel-level exploitation path from web content.

Memory Corruption Google Denial Of Service +43
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy