CVE-2025-47328

Sept. 25, 2025, 4:01 p.m.

7.5
High

Description

Transient DOS while processing power control requests with invalid antenna or stream values.

Product(s) Impacted

Vendor Product Versions
Qualcomm
  • Fastconnect 7800 Firmware
  • Fastconnect 7800
  • Immersive Home 3210 Platform Firmware
  • Immersive Home 3210 Platform
  • Immersive Home 326 Platform Firmware
  • Immersive Home 326 Platform
  • Ipq5300 Firmware
  • Ipq5300
  • Ipq5302 Firmware
  • Ipq5302
  • Ipq5312 Firmware
  • Ipq5312
  • Ipq5332 Firmware
  • Ipq5332
  • Ipq5424 Firmware
  • Ipq5424
  • Ipq9008 Firmware
  • Ipq9008
  • Ipq9048 Firmware
  • Ipq9048
  • Ipq9554 Firmware
  • Ipq9554
  • Ipq9570 Firmware
  • Ipq9570
  • Ipq9574 Firmware
  • Ipq9574
  • Qca0000 Firmware
  • Qca0000
  • Qca8075 Firmware
  • Qca8075
  • Qca8080 Firmware
  • Qca8080
  • Qca8081 Firmware
  • Qca8081
  • Qca8082 Firmware
  • Qca8082
  • Qca8084 Firmware
  • Qca8084
  • Qca8085 Firmware
  • Qca8085
  • Qca8101 Firmware
  • Qca8101
  • Qca8102 Firmware
  • Qca8102
  • Qca8111 Firmware
  • Qca8111
  • Qca8112 Firmware
  • Qca8112
  • Qca8384 Firmware
  • Qca8384
  • Qca8385 Firmware
  • Qca8385
  • Qca8386 Firmware
  • Qca8386
  • Qcc710 Firmware
  • Qcc710
  • Qcf8000 Firmware
  • Qcf8000
  • Qcf8001 Firmware
  • Qcf8001
  • Qcn5124 Firmware
  • Qcn5124
  • Qcn5224 Firmware
  • Qcn5224
  • Qcn6224 Firmware
  • Qcn6224
  • Qcn6274 Firmware
  • Qcn6274
  • Qcn6402 Firmware
  • Qcn6402
  • Qcn6412 Firmware
  • Qcn6412
  • Qcn6422 Firmware
  • Qcn6422
  • Qcn6432 Firmware
  • Qcn6432
  • Qcn9000 Firmware
  • Qcn9000
  • Qcn9012 Firmware
  • Qcn9012
  • Qcn9024 Firmware
  • Qcn9024
  • Qcn9074 Firmware
  • Qcn9074
  • Qcn9160 Firmware
  • Qcn9160
  • Qcn9274 Firmware
  • Qcn9274
  • Qfw7114 Firmware
  • Qfw7114
  • Qfw7124 Firmware
  • Qfw7124
  • Qmp1000 Firmware
  • Qmp1000
  • Qxm8083 Firmware
  • Qxm8083
  • Sm8735 Firmware
  • Sm8735
  • Sm8750 Firmware
  • Sm8750
  • Sm8750p Firmware
  • Sm8750p
  • Snapdragon X72 5g Modem-rf System Firmware
  • Snapdragon X72 5g Modem-rf System
  • Snapdragon X75 5g Modem-rf System Firmware
  • Snapdragon X75 5g Modem-rf System
  • Wcd9340 Firmware
  • Wcd9340
  • Wcd9378 Firmware
  • Wcd9378
  • Wcd9395 Firmware
  • Wcd9395
  • Wcn7750 Firmware
  • Wcn7750
  • Wcn7860 Firmware
  • Wcn7860
  • Wcn7861 Firmware
  • Wcn7861
  • Wcn7880 Firmware
  • Wcn7880
  • Wcn7881 Firmware
  • Wcn7881
  • Wsa8830 Firmware
  • Wsa8830
  • Wsa8832 Firmware
  • Wsa8832
  • Wsa8835 Firmware
  • Wsa8835
  • Wsa8840 Firmware
  • Wsa8840
  • Wsa8845 Firmware
  • Wsa8845
  • Wsa8845h Firmware
  • Wsa8845h
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -
  • -

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-126
Buffer Over-read
The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
o qualcomm fastconnect_7800_firmware - / / / / / / /
h qualcomm fastconnect_7800 - / / / / / / /
o qualcomm immersive_home_3210_platform_firmware - / / / / / / /
h qualcomm immersive_home_3210_platform - / / / / / / /
o qualcomm immersive_home_326_platform_firmware - / / / / / / /
h qualcomm immersive_home_326_platform - / / / / / / /
o qualcomm ipq5300_firmware - / / / / / / /
h qualcomm ipq5300 - / / / / / / /
o qualcomm ipq5302_firmware - / / / / / / /
h qualcomm ipq5302 - / / / / / / /
o qualcomm ipq5312_firmware - / / / / / / /
h qualcomm ipq5312 - / / / / / / /
o qualcomm ipq5332_firmware - / / / / / / /
h qualcomm ipq5332 - / / / / / / /
o qualcomm ipq5424_firmware - / / / / / / /
h qualcomm ipq5424 - / / / / / / /
o qualcomm ipq9008_firmware - / / / / / / /
h qualcomm ipq9008 - / / / / / / /
o qualcomm ipq9048_firmware - / / / / / / /
h qualcomm ipq9048 - / / / / / / /
o qualcomm ipq9554_firmware - / / / / / / /
h qualcomm ipq9554 - / / / / / / /
o qualcomm ipq9570_firmware - / / / / / / /
h qualcomm ipq9570 - / / / / / / /
o qualcomm ipq9574_firmware - / / / / / / /
h qualcomm ipq9574 - / / / / / / /
o qualcomm qca0000_firmware - / / / / / / /
h qualcomm qca0000 - / / / / / / /
o qualcomm qca8075_firmware - / / / / / / /
h qualcomm qca8075 - / / / / / / /
o qualcomm qca8080_firmware - / / / / / / /
h qualcomm qca8080 - / / / / / / /
o qualcomm qca8081_firmware - / / / / / / /
h qualcomm qca8081 - / / / / / / /
o qualcomm qca8082_firmware - / / / / / / /
h qualcomm qca8082 - / / / / / / /
o qualcomm qca8084_firmware - / / / / / / /
h qualcomm qca8084 - / / / / / / /
o qualcomm qca8085_firmware - / / / / / / /
h qualcomm qca8085 - / / / / / / /
o qualcomm qca8101_firmware - / / / / / / /
h qualcomm qca8101 - / / / / / / /
o qualcomm qca8102_firmware - / / / / / / /
h qualcomm qca8102 - / / / / / / /
o qualcomm qca8111_firmware - / / / / / / /
h qualcomm qca8111 - / / / / / / /
o qualcomm qca8112_firmware - / / / / / / /
h qualcomm qca8112 - / / / / / / /
o qualcomm qca8384_firmware - / / / / / / /
h qualcomm qca8384 - / / / / / / /
o qualcomm qca8385_firmware - / / / / / / /
h qualcomm qca8385 - / / / / / / /
o qualcomm qca8386_firmware - / / / / / / /
h qualcomm qca8386 - / / / / / / /
o qualcomm qcc710_firmware - / / / / / / /
h qualcomm qcc710 - / / / / / / /
o qualcomm qcf8000_firmware - / / / / / / /
h qualcomm qcf8000 - / / / / / / /
o qualcomm qcf8001_firmware - / / / / / / /
h qualcomm qcf8001 - / / / / / / /
o qualcomm qcn5124_firmware - / / / / / / /
h qualcomm qcn5124 - / / / / / / /
o qualcomm qcn5224_firmware - / / / / / / /
h qualcomm qcn5224 - / / / / / / /
o qualcomm qcn6224_firmware - / / / / / / /
h qualcomm qcn6224 - / / / / / / /
o qualcomm qcn6274_firmware - / / / / / / /
h qualcomm qcn6274 - / / / / / / /
o qualcomm qcn6402_firmware - / / / / / / /
h qualcomm qcn6402 - / / / / / / /
o qualcomm qcn6412_firmware - / / / / / / /
h qualcomm qcn6412 - / / / / / / /
o qualcomm qcn6422_firmware - / / / / / / /
h qualcomm qcn6422 - / / / / / / /
o qualcomm qcn6432_firmware - / / / / / / /
h qualcomm qcn6432 - / / / / / / /
o qualcomm qcn9000_firmware - / / / / / / /
h qualcomm qcn9000 - / / / / / / /
o qualcomm qcn9012_firmware - / / / / / / /
h qualcomm qcn9012 - / / / / / / /
o qualcomm qcn9024_firmware - / / / / / / /
h qualcomm qcn9024 - / / / / / / /
o qualcomm qcn9074_firmware - / / / / / / /
h qualcomm qcn9074 - / / / / / / /
o qualcomm qcn9160_firmware - / / / / / / /
h qualcomm qcn9160 - / / / / / / /
o qualcomm qcn9274_firmware - / / / / / / /
h qualcomm qcn9274 - / / / / / / /
o qualcomm qfw7114_firmware - / / / / / / /
h qualcomm qfw7114 - / / / / / / /
o qualcomm qfw7124_firmware - / / / / / / /
h qualcomm qfw7124 - / / / / / / /
o qualcomm qmp1000_firmware - / / / / / / /
h qualcomm qmp1000 - / / / / / / /
o qualcomm qxm8083_firmware - / / / / / / /
h qualcomm qxm8083 - / / / / / / /
o qualcomm sm8735_firmware - / / / / / / /
h qualcomm sm8735 - / / / / / / /
o qualcomm sm8750_firmware - / / / / / / /
h qualcomm sm8750 - / / / / / / /
o qualcomm sm8750p_firmware - / / / / / / /
h qualcomm sm8750p - / / / / / / /
o qualcomm snapdragon_x72_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x72_5g_modem-rf_system - / / / / / / /
o qualcomm snapdragon_x75_5g_modem-rf_system_firmware - / / / / / / /
h qualcomm snapdragon_x75_5g_modem-rf_system - / / / / / / /
o qualcomm wcd9340_firmware - / / / / / / /
h qualcomm wcd9340 - / / / / / / /
o qualcomm wcd9378_firmware - / / / / / / /
h qualcomm wcd9378 - / / / / / / /
o qualcomm wcd9395_firmware - / / / / / / /
h qualcomm wcd9395 - / / / / / / /
o qualcomm wcn7750_firmware - / / / / / / /
h qualcomm wcn7750 - / / / / / / /
o qualcomm wcn7860_firmware - / / / / / / /
h qualcomm wcn7860 - / / / / / / /
o qualcomm wcn7861_firmware - / / / / / / /
h qualcomm wcn7861 - / / / / / / /
o qualcomm wcn7880_firmware - / / / / / / /
h qualcomm wcn7880 - / / / / / / /
o qualcomm wcn7881_firmware - / / / / / / /
h qualcomm wcn7881 - / / / / / / /
o qualcomm wsa8830_firmware - / / / / / / /
h qualcomm wsa8830 - / / / / / / /
o qualcomm wsa8832_firmware - / / / / / / /
h qualcomm wsa8832 - / / / / / / /
o qualcomm wsa8835_firmware - / / / / / / /
h qualcomm wsa8835 - / / / / / / /
o qualcomm wsa8840_firmware - / / / / / / /
h qualcomm wsa8840 - / / / / / / /
o qualcomm wsa8845_firmware - / / / / / / /
h qualcomm wsa8845 - / / / / / / /
o qualcomm wsa8845h_firmware - / / / / / / /
h qualcomm wsa8845h - / / / / / / /

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html

Tags

product-security@qualcomm.com
CWE-126
2025-09-24
CVE-2025-47328

CVSS Score

7.5 / 10

CVSS Data - 3.1

  • Attack Vector: NETWORK
  • Attack Complexity: LOW
  • Privileges Required: NONE
  • Scope: UNCHANGED
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: HIGH

    • CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

    View Vector String

Timeline

Published: Sept. 24, 2025, 4:15 p.m.
Last Modified: Sept. 25, 2025, 4:01 p.m.

Status : Analyzed

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

product-security@qualcomm.com

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.