CVE-2025-47321

Q: What is the severity of CVE-2025-47321?

CVE-2025-47321 has a CVSS score of 7.8 (HIGH). This vulnerability involves memory corruption when copying packets from Unix domain socket clients, potentially allowing attackers to execute arbitrary code or cause denial of service. It affects systems using Qualcomm components that handle Unix domain socket communications. The CVSS score of 7.8 indicates high severity.

7.8 HIGH

Denial of Service

📋 TL;DR

This vulnerability involves memory corruption when copying packets from Unix domain socket clients, potentially allowing attackers to execute arbitrary code or cause denial of service. It affects systems using Qualcomm components that handle Unix domain socket communications. The CVSS score of 7.8 indicates high severity.

💻 Affected Systems

Products:

Qualcomm components handling Unix domain sockets

Versions: Specific versions not detailed in reference; check Qualcomm advisory

Operating Systems: Linux-based systems with Qualcomm components

Default Config Vulnerable: ⚠️ Yes

Notes: Requires Unix domain socket functionality to be enabled and used

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with kernel privileges leading to complete system compromise

🟠

Likely Case

Denial of service through system crashes or privilege escalation

🟢

If Mitigated

Limited impact with proper network segmentation and minimal exposed services

🌐 Internet-Facing: LOW (Unix domain sockets are typically local IPC mechanisms)

🏢 Internal Only: HIGH (requires local access but can lead to privilege escalation)

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires ability to send crafted packets to Unix domain sockets; local access typically needed

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm December 2025 security bulletin

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Review Qualcomm December 2025 security bulletin. 2. Identify affected components. 3. Apply vendor-provided patches. 4. Reboot system.

🔧 Temporary Workarounds

Restrict Unix domain socket access

linux

Limit which users/processes can access vulnerable Unix domain sockets

chmod 600 /path/to/socket
setfacl -m u:user:rw /path/to/socket

Disable unnecessary Unix socket services

linux

Stop services that use Unix domain sockets if not required

systemctl stop service-name
kill -9 $(lsof -t /path/to/socket)

🧯 If You Can't Patch

Implement strict access controls on Unix domain sockets
Monitor for unusual socket activity and process crashes

🔍 How to Verify

Check if Vulnerable:

Check Qualcomm component versions against December 2025 bulletin

Check Version:

Check vendor-specific commands for Qualcomm components

Verify Fix Applied:

Verify patched Qualcomm component versions and test socket functionality

📡 Detection & Monitoring

Log Indicators:

Kernel panics
Process crashes related to socket handling
Unusual socket connection attempts

Network Indicators:

Local socket connection spikes
Abnormal IPC traffic patterns

SIEM Query:

process:crash AND (socket OR unix) OR kernel:panic AND qualcomm

📊 Metadata

CVE ID: CVE-2025-47321

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-120

EPSS Score: 0.02% exploit probability (2.5th percentile)

Published: December 18, 2025

Last Updated: January 27, 2026

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8031 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca2066 Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6125 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn6024 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs6125 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qep8111 Firmware by Qualcomm

Qmp1000 Firmware by Qualcomm

Robotics Rb2 Platform Firmware by Qualcomm

Sa4150p Firmware by Qualcomm

Sa4155p Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa7255p Firmware by Qualcomm

Sa7775p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8620p Firmware by Qualcomm

Sa8650p Firmware by Qualcomm

Sa8770p Firmware by Qualcomm

Sa8775p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Sdx61 Firmware by Qualcomm

Sm6475 Firmware by Qualcomm

Sm6650 Firmware by Qualcomm

Sm6650p Firmware by Qualcomm

Sm7250p Firmware by Qualcomm

Sm7435 Firmware by Qualcomm

Sm7635 Firmware by Qualcomm

Sm7635p Firmware by Qualcomm

Sm8735 Firmware by Qualcomm

Sm8750 Firmware by Qualcomm

Sm8750p Firmware by Qualcomm

Smart Audio 400 Platform Firmware by Qualcomm

Snapdragon 4 Gen 2 Mobile Platform Firmware by Qualcomm

Snapdragon 6 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 680 4g Mobile Platform Firmware by Qualcomm

Snapdragon 685 4g Mobile Platform \(sm6225 Ad\) Firmware by Qualcomm

Snapdragon 765 5g Mobile Platform \(sm7250 Aa\) Firmware by Qualcomm

Snapdragon 765g 5g Mobile Platform \(sm7250 Ab\) Firmware by Qualcomm

Snapdragon 768g 5g Mobile Platform \(sm7250 Ac\) Firmware by Qualcomm

Snapdragon Ar1 Gen 1 Platform \"luna1\" Firmware by Qualcomm

Snapdragon Ar1 Gen 1 Platform Firmware by Qualcomm

Snapdragon Ar2 Gen 1 Platform Firmware by Qualcomm

Snapdragon W5\+ Gen 1 Wearable Platform Firmware by Qualcomm

Snapdragon X32 5g Modem Rf System Firmware by Qualcomm

Snapdragon X35 5g Modem Rf System Firmware by Qualcomm

Snapdragon X65 5g Modem Rf System Firmware by Qualcomm