Qualcomm Inc Snapdragon vulnerabilities

CVE-2025-47383 [HIGH] CWE-325 CVE-2025-47383: Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE. Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.

CVE-2025-59600 [HIGH] CWE-126 CVE-2025-59600: Memory Corruption when adding user-supplied data without checking available buffer space. Memory Corruption when adding user-supplied data without checking available buffer space.

CVE-2025-47381 [HIGH] CWE-416 CVE-2025-47381: Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs. Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.

CVE-2025-47385 [HIGH] CWE-1262 CVE-2025-47385: Memory Corruption when accessing trusted execution environment without proper privilege check. Memory Corruption when accessing trusted execution environment without proper privilege check.

CVE-2025-47376 [HIGH] CWE-416 CVE-2025-47376: Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls. Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.

CVE-2025-47379 [HIGH] CWE-416 CVE-2025-47379: Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization bet Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources.

CVE-2025-47377 [HIGH] CWE-416 CVE-2025-47377: Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls. Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.

CVE-2025-59603 [HIGH] CWE-787 CVE-2025-59603: Memory Corruption when processing invalid user address with nonstandard buffer address. Memory Corruption when processing invalid user address with nonstandard buffer address.

CVE-2025-47375 [HIGH] CWE-416 CVE-2025-47375: Memory corruption while handling different IOCTL calls from the user-space simultaneously. Memory corruption while handling different IOCTL calls from the user-space simultaneously.

CVE-2025-47378 [HIGH] CWE-497 CVE-2025-47378: Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain. Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.

CVE-2025-47371 [MEDIUM] CWE-617 CVE-2025-47371: Transient DOS when an LTE RLC packet with invalid TB is received by UE. Transient DOS when an LTE RLC packet with invalid TB is received by UE.

CVE-2025-47384 [MEDIUM] CWE-617 CVE-2025-47384: Transient DOS when MAC configures config id greater than supported maximum value. Transient DOS when MAC configures config id greater than supported maximum value.

CVE-2025-47399 [HIGH] CWE-120 CVE-2025-47399: Memory Corruption while processing IOCTL call to update sensor property settings with invalid input Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.

CVE-2025-47359 [HIGH] CWE-416 CVE-2025-47359: Memory Corruption when multiple threads simultaneously access a memory free API. Memory Corruption when multiple threads simultaneously access a memory free API.

CVE-2025-47366 [HIGH] CWE-749 CVE-2025-47366: Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrec Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.

CVE-2025-47358 [HIGH] CWE-416 CVE-2025-47358: Memory Corruption when user space address is modified and passed to mem_free API, causing kernel mem Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.

CVE-2025-47363 [HIGH] CWE-190 CVE-2025-47363: Memory corruption when calculating oversized partition sizes without proper checks. Memory corruption when calculating oversized partition sizes without proper checks.

CVE-2025-47364 [HIGH] CWE-190 CVE-2025-47364: Memory corruption while calculating offset from partition start point. Memory corruption while calculating offset from partition start point.

CVE-2025-47397 [HIGH] CWE-401 CVE-2025-47397: Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOM Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.

CVE-2025-47398 [HIGH] CWE-416 CVE-2025-47398: Memory Corruption while deallocating graphics processing unit memory buffers due to improper handlin Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.