CVE-2025-47344 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
qualcomm	CNA	6.7 MEDIUM	LOCAL	LOW	HIGH	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 2%

Affected Products (NVD)

Vendor	Product	Version
qualcomm	csra6620_firmware	-
qualcomm	csra6640_firmware	-
qualcomm	fastconnect_6200_firmware	-
qualcomm	fastconnect_6700_firmware	-
qualcomm	fastconnect_6900_firmware	-
qualcomm	fastconnect_7800_firmware	-
qualcomm	qca6574_firmware	-
qualcomm	qca6574a_firmware	-
qualcomm	qca6574au_firmware	-
qualcomm	qca6595au_firmware	-
qualcomm	qca6696_firmware	-
qualcomm	qca6698aq_firmware	-
qualcomm	qcm4490_firmware	-
qualcomm	qcm5430_firmware	-
qualcomm	qcm6490_firmware	-
qualcomm	qcs4490_firmware	-
qualcomm	qcs5430_firmware	-
qualcomm	qcs615_firmware	-
qualcomm	qcs6490_firmware	-
qualcomm	qcs8550_firmware	-
qualcomm	qcs9100_firmware	-
qualcomm	qmp1000_firmware	-
qualcomm	video_collaboration_vc3_platform_firmware	-
qualcomm	robotics_rb2_platform_firmware	-
qualcomm	sa6155p_firmware	-
qualcomm	sa8155p_firmware	-
qualcomm	sa8195p_firmware	-
qualcomm	sm4635_firmware	-
qualcomm	sm6650_firmware	-
qualcomm	sm6650p_firmware	-
qualcomm	sm7635_firmware	-
qualcomm	sm7635p_firmware	-
qualcomm	sm7675_firmware	-
qualcomm	sm7675p_firmware	-
qualcomm	sm8635_firmware	-
qualcomm	sm8635p_firmware	-
qualcomm	sm8650q_firmware	-
qualcomm	sm8735_firmware	-
qualcomm	sm8750_firmware	-
qualcomm	sm8750p_firmware	-
qualcomm	snapdragon_4_gen_1_mobile_platform_firmware	-
qualcomm	snapdragon_4_gen_2_mobile_platform_firmware	-
qualcomm	snapdragon_480_5g_mobile_platform_firmware	-
qualcomm	snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmware	-
qualcomm	snapdragon_662_mobile_platform_firmware	-
qualcomm	snapdragon_680_4g_mobile_platform_firmware	-
qualcomm	snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmware	-
qualcomm	snapdragon_695_5g_mobile_platform_firmware	-
qualcomm	snapdragon_8_gen_3_mobile_platform_firmware	-
qualcomm	snapdragon_ar1_gen_1_platform_firmware	-
qualcomm	snapdragon_ar1_gen_1_platform_\"luna1\"_firmware	-
qualcomm	snapdragon_ar2_gen_1_platform_firmware	-
qualcomm	sxr2230p_firmware	-
qualcomm	sxr2250p_firmware	-
qualcomm	sxr2330p_firmware	-
qualcomm	sxr2350p_firmware	-
qualcomm	wcd9335_firmware	-
qualcomm	wcd9370_firmware	-
qualcomm	wcd9375_firmware	-
qualcomm	wcd9378_firmware	-
qualcomm	wcd9380_firmware	-
qualcomm	wcd9385_firmware	-
qualcomm	wcd9390_firmware	-
qualcomm	wcd9395_firmware	-
qualcomm	wcn3950_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn6650_firmware	-
qualcomm	wcn6740_firmware	-
qualcomm	wcn6755_firmware	-
qualcomm	wcn7750_firmware	-
qualcomm	wcn7860_firmware	-
qualcomm	wcn7861_firmware	-
qualcomm	wcn7880_firmware	-
qualcomm	wcn7881_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8832_firmware	-
qualcomm	wsa8835_firmware	-
qualcomm	wsa8840_firmware	-
qualcomm	wsa8845_firmware	-
qualcomm	wsa8845h_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
The software checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the software to perform invalid actions when the resource is in an unexpected state.

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html