CVE-2025-4738718.12.2025, 06:15Memory Corruption when processing IOCTLs for JPEG data without verification.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST7.8 HIGHLOCALLOWLOWCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HqualcommCNA7.8 HIGHLOCALLOWLOWCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCISA-ADPADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 2%Common Weakness EnumerationCWE-822 - Untrusted Pointer DereferenceThe program obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.Referenceshttps://docs.qualcomm.com/product/publicresources/securitybulletin/december-2025-bulletin.html