1. Home
  2. Vulnerabilities
  3. CVE-2025-47317
7.8
HIGH CVSS 3.1
CVE-2025-47317
Buffer Over-read in BT Controller
Description

Memory corruption due to global buffer overflow when a test command uses an invalid payload type.

INFO

Published Date :

Sept. 24, 2025, 4:15 p.m.

Last Modified :

Sept. 25, 2025, 4:04 p.m.

Remotely Exploit :

No

Source :

[email protected]
Affected Products

The following products are affected by CVE-2025-47317 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Qualcomm wcd9385_firmware
2 Qualcomm wcn3988_firmware
3 Qualcomm wsa8810_firmware
4 Qualcomm wsa8815_firmware
5 Qualcomm wsa8830_firmware
6 Qualcomm wsa8835_firmware
7 Qualcomm wcd9370_firmware
8 Qualcomm wcd9375_firmware
9 Qualcomm wsa8832_firmware
10 Qualcomm fastconnect_6200_firmware
11 Qualcomm fastconnect_7800_firmware
12 Qualcomm wcd9371_firmware
13 Qualcomm fastconnect_6700_firmware
14 Qualcomm qcc710_firmware
15 Qualcomm wcd9390_firmware
16 Qualcomm wcd9395_firmware
17 Qualcomm wsa8840_firmware
18 Qualcomm wsa8845_firmware
19 Qualcomm wsa8845h_firmware
20 Qualcomm wcd9370
21 Qualcomm wcd9371
22 Qualcomm wcd9375
23 Qualcomm wcd9385
24 Qualcomm wcn3988
25 Qualcomm wsa8810
26 Qualcomm wsa8815
27 Qualcomm wsa8830
28 Qualcomm wsa8835
29 Qualcomm qcc711_firmware
30 Qualcomm qcc7225_firmware
31 Qualcomm qcc7226_firmware
32 Qualcomm qcc7228_firmware
33 Qualcomm fastconnect_6700
34 Qualcomm fastconnect_6200
35 Qualcomm fastconnect_7800
36 Qualcomm qcc710
37 Qualcomm wcd9390
38 Qualcomm wcd9395
39 Qualcomm wsa8832
40 Qualcomm wsa8840
41 Qualcomm wsa8845
42 Qualcomm wsa8845h
43 Qualcomm qcc711
44 Qualcomm qcc7225
45 Qualcomm qcc7226
46 Qualcomm qcc7228
47 Qualcomm sm7435_firmware
48 Qualcomm sm7435
49 Qualcomm sm8635_firmware
50 Qualcomm sm8635
51 Qualcomm sm8750_firmware
52 Qualcomm sm8750
53 Qualcomm wcn6755_firmware
54 Qualcomm wcn6755
55 Qualcomm wcd9378_firmware
56 Qualcomm wcd9378
57 Qualcomm wcn7880_firmware
58 Qualcomm wcn7880
59 Qualcomm snapdragon_6_gen_1_mobile_platform_firmware
60 Qualcomm snapdragon_6_gen_1_mobile_platform
61 Qualcomm wcn6650_firmware
62 Qualcomm wcn6650
63 Qualcomm sm7550_firmware
64 Qualcomm sm7550
65 Qualcomm wcn7881_firmware
66 Qualcomm wcn7881
67 Qualcomm wcn7861_firmware
68 Qualcomm wcn7861
69 Qualcomm wcn7860_firmware
70 Qualcomm wcn7860
71 Qualcomm sm8750p_firmware
72 Qualcomm sm8750p
73 Qualcomm sm6650_firmware
74 Qualcomm sm6650
75 Qualcomm sm7635_firmware
76 Qualcomm sm7635
77 Qualcomm sm7675_firmware
78 Qualcomm sm7675
79 Qualcomm sm7675p_firmware
80 Qualcomm sm7675p
81 Qualcomm sm8635p_firmware
82 Qualcomm sm8635p
83 Qualcomm sm8735_firmware
84 Qualcomm sm8735
85 Qualcomm qmp1000_firmware
86 Qualcomm qmp1000
87 Qualcomm wcn7750_firmware
88 Qualcomm wcn7750
89 Qualcomm sm6650p_firmware
90 Qualcomm sm6650p
91 Qualcomm sm6475_firmware
92 Qualcomm sm6475
93 Qualcomm sm7635p_firmware
94 Qualcomm sm7635p
95 Qualcomm qcc5161_firmware
96 Qualcomm qcc5161
97 Qualcomm s3_gen_2_sound_platform_firmware
98 Qualcomm s3_gen_2_sound_platform
99 Qualcomm s3_sound_platform_firmware
100 Qualcomm s3_sound_platform
101 Qualcomm s5_gen_2_sound_platform_firmware
102 Qualcomm s5_gen_2_sound_platform
103 Qualcomm s5_sound_platform_firmware
104 Qualcomm s5_sound_platform
105 Qualcomm sm7550p_firmware
106 Qualcomm sm7550p
: Total Affected Vendor : 1 | Products : 106
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 3.1 HIGH 2cfc7d3e-20d3-47ac-8db7-1b7285aff15f
CVSS 3.1 HIGH [email protected]
Solution
Fix memory corruption by validating input and sanitizing data before processing.
  • Validate all incoming data and payload types.
  • Sanitize data before use.
  • Implement robust error handling.
  • Apply relevant security patches.
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2025-47317.

URL Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html Vendor Advisory
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2025-47317 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2025-47317 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2025-47317 vulnerability anywhere in the article.

Results are limited to the first 20 news articles due to potential performance issues.

The following table lists the changes that have been made to the CVE-2025-47317 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Sep. 25, 2025

    Action Type Old Value New Value
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_6200:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcc5161_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcc5161:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcc710_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcc710:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcc711_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcc711:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcc7225_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcc7225:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcc7226_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcc7226:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qcc7228_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qcc7228:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:qmp1000_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:qmp1000:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:s3_gen_2_sound_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:s3_gen_2_sound_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:s3_sound_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:s3_sound_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:s5_gen_2_sound_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:s5_gen_2_sound_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:s5_sound_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:s5_sound_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm6475_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm6475:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm6650_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm6650:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm6650p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm6650p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7435_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7435:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7550_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7550:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7550p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7550p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7635_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7635:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7635p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7635p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7675_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7675:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm7675p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm7675p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8635_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8635:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8635p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8635p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8735_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8735:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8750_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8750:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:sm8750p_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:sm8750p:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:snapdragon_6_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:snapdragon_6_gen_1_mobile_platform:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9371_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9371:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9378_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9378:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9390:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn6650_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn6650:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn6755_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn6755:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn7750_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn7750:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn7860_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn7860:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn7861_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn7861:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn7880_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn7880:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wcn7881_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wcn7881:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*
    Added CPE Configuration AND OR *cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:* OR cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*
    Added Reference Type Qualcomm, Inc.: https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html Types: Vendor Advisory
  • New CVE Received by [email protected]

    Sep. 24, 2025

    Action Type Old Value New Value
    Added Description Memory corruption due to global buffer overflow when a test command uses an invalid payload type.
    Added CVSS V3.1 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    Added CWE CWE-126
    Added Reference https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
Vulnerability Scoring Details
Base CVSS Score: 7.8
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact