Medium severity6.1NVD Advisory· Published May 4, 2026· Updated May 6, 2026

CVE-2025-47406

Description

Information Disclosure while processing IOCTL handler callbacks without verifying buffer size.

Affected products

Qualcomm/Cologne Firmware
cpe:2.3:o:qualcomm:cologne_firmware:-:*:*:*:*:*:*:*
Qualcomm/Fastconnect 6700 Firmware
cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
Qualcomm/Fastconnect 6900 Firmware
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
Qualcomm/Fastconnect 7800 Firmware
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
Qualcomm/Iqx5121 Firmware
cpe:2.3:o:qualcomm:iqx5121_firmware:-:*:*:*:*:*:*:*
Qualcomm/Iqx7181 Firmware
cpe:2.3:o:qualcomm:iqx7181_firmware:-:*:*:*:*:*:*:*
Qualcomm/Qca0000 Firmware
cpe:2.3:o:qualcomm:qca0000_firmware:-:*:*:*:*:*:*:*
Qualcomm/Qcm5430 Firmware
cpe:2.3:o:qualcomm:qcm5430_firmware:-:*:*:*:*:*:*:*
Qualcomm/Qcm6490 Firmware
cpe:2.3:o:qualcomm:qcm6490_firmware:-:*:*:*:*:*:*:*
Qualcomm/Sc8380xp Firmware
cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*
Qualcomm/Snapdragon 7c\+ Gen 3 Compute Firmware
cpe:2.3:o:qualcomm:snapdragon_7c\+_gen_3_compute_firmware:-:*:*:*:*:*:*:*
Qualcomm/Snapdragon 8cx Gen 3 Compute Firmware
cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_firmware:-:*:*:*:*:*:*:*
Qualcomm/Video Collaboration Vc3 Platform Firmware
cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wcd9370 Firmware
cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wcd9375 Firmware
cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wcd9378c Firmware
cpe:2.3:o:qualcomm:wcd9378c_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wcd9380 Firmware
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wcd9385 Firmware
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wsa8830 Firmware
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wsa8835 Firmware
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wsa8840 Firmware
cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wsa8845 Firmware
cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
Qualcomm/Wsa8845h Firmware
cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
Qualcomm/X2000077 Firmware
cpe:2.3:o:qualcomm:x2000077_firmware:-:*:*:*:*:*:*:*
Qualcomm/X2000086 Firmware
cpe:2.3:o:qualcomm:x2000086_firmware:-:*:*:*:*:*:*:*
Qualcomm/X2000090 Firmware
cpe:2.3:o:qualcomm:x2000090_firmware:-:*:*:*:*:*:*:*
Qualcomm/X2000092 Firmware
cpe:2.3:o:qualcomm:x2000092_firmware:-:*:*:*:*:*:*:*
Qualcomm/X2000094 Firmware
cpe:2.3:o:qualcomm:x2000094_firmware:-:*:*:*:*:*:*:*
Qualcomm/Xg101002 Firmware
cpe:2.3:o:qualcomm:xg101002_firmware:-:*:*:*:*:*:*:*
Qualcomm/Xg101032 Firmware
cpe:2.3:o:qualcomm:xg101032_firmware:-:*:*:*:*:*:*:*
Qualcomm/Xg101039 Firmware
cpe:2.3:o:qualcomm:xg101039_firmware:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

docs.qualcomm.com/product/publicresources/securitybulletin/may-2026-bulletin.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.397
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000