Main Vulnerability Database Vulnerabilities #VU119013

#VU119013 Integer overflow in Qualcomm products - CVE-2025-47351

Published: December 2, 2025

Vulnerability identifier: #VU119013

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2025-47351

CWE-ID: CWE-190

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
FastConnect 6200
FastConnect 6700
FastConnect 6900
FastConnect 7800
SG6150
SG6150P
SM8750
SM8750P
SM8850
SM8850P
WCD9370
WCD9375
WCD9385
WCD9395
WCN3950
WCN3988
WCN7860
WCN7861
WCN7880
WCN7881
WSA8810
WSA8815
WSA8830
WSA8835
WSA8840
WSA8845
WSA8845H
WSA8832

Software vendor:
Qualcomm

Description

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in DSP Service. A local application can execute arbitrary code.

Remediation

Install security update from vendor's website.

External links

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html

#VU119013 Integer overflow in Qualcomm products - CVE-2025-47351

Description

Remediation

External links

Please verify you're human