1. Home
  2. CVE Database
  3. CVE-2025-47404
MEDIUM · 6.5

CVE-2025-47404

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

Vulnerability Description

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
LOW

Affected Products

VendorProductVersions
QualcommQca8695Au Firmware-
QualcommQca8695Au-
QualcommQca9367 Firmware-
QualcommQca9367-
QualcommQca9377 Firmware-
QualcommQca9377-
QualcommQcc710 Firmware-
QualcommQcc710-
QualcommQcm2290 Firmware-
QualcommQcm2290-
QualcommQcm4325 Firmware-
QualcommQcm4325-
QualcommQcm5430 Firmware-
QualcommQcm5430-
QualcommQcm6125 Firmware-
QualcommQcm6125-
QualcommQcm6490 Firmware-
QualcommQcm6490-
QualcommQcn6224 Firmware-
QualcommQcn6224-

Related Weaknesses (CWE)

CWE-120CWE-787

References

FAQ

What is CVE-2025-47404?

CVE-2025-47404 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.

How severe is CVE-2025-47404?

CVE-2025-47404 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-47404?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Qca8695Au Firmware, Qualcomm Qca8695Au, Qualcomm Qca9367 Firmware, Qualcomm Qca9367, Qualcomm Qca9377 Firmware.