CVE-2025-47334

Q: What is the severity of CVE-2025-47334?

CVE-2025-47334 has a CVSS score of 6.7 (MEDIUM). This vulnerability involves memory corruption in Qualcomm camera drivers when processing shared command buffer packets between userspace and kernel. It allows attackers with camera access to potentially execute arbitrary code or cause denial of service. Affected systems include devices with Qualcomm chipsets running vulnerable camera driver versions.

6.7 MEDIUM

Buffer Overflow

📋 TL;DR

This vulnerability involves memory corruption in Qualcomm camera drivers when processing shared command buffer packets between userspace and kernel. It allows attackers with camera access to potentially execute arbitrary code or cause denial of service. Affected systems include devices with Qualcomm chipsets running vulnerable camera driver versions.

💻 Affected Systems

Products:

Qualcomm Snapdragon mobile platforms
Devices with Qualcomm camera hardware

Versions: Specific versions not detailed in reference; affected by January 2026 Qualcomm security bulletin

Operating Systems: Android, Linux-based systems with Qualcomm camera drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Requires camera permissions/access; exploitation depends on specific driver implementations and device configurations.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local privilege escalation to kernel-level execution, potentially leading to full device compromise, data exfiltration, or persistent backdoor installation.

🟠

Likely Case

Application crash or denial of service affecting camera functionality, with potential for limited local code execution within camera context.

🟢

If Mitigated

Isolated camera service crash without privilege escalation if proper sandboxing and SELinux/apparmor policies are enforced.

🌐 Internet-Facing: LOW - Requires local camera access, not directly exploitable over network.

🏢 Internal Only: MEDIUM - Malicious apps with camera permissions could exploit this locally, but requires specific permissions and user interaction.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires camera access permissions; buffer overflow exploitation requires specific memory layout knowledge.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to January 2026 Qualcomm security bulletin for specific patched versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html

Restart Required: Yes

Instructions:

1. Check device manufacturer for security updates. 2. Apply Qualcomm-provided camera driver patches. 3. Update Android security patch level to January 2026 or later. 4. Reboot device after update.

🔧 Temporary Workarounds

Restrict camera permissions

android

Limit camera access to trusted applications only

adb shell pm revoke <package> android.permission.CAMERA
adb shell appops set <package> CAMERA deny

Disable unnecessary camera services

android

Temporarily disable camera hardware if not required

adb shell pm disable com.android.camera2
echo 0 > /sys/class/camera/rear/power

🧯 If You Can't Patch

Implement strict SELinux/apparmor policies to isolate camera services
Monitor for suspicious camera permission requests and application behavior

🔍 How to Verify

Check if Vulnerable:

Check Android security patch level: Settings > About phone > Android security patch level. If before January 2026, likely vulnerable.

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify security patch level is January 2026 or later and check for Qualcomm driver updates in device firmware information.

📡 Detection & Monitoring

Log Indicators:

Camera service crashes in logcat
Kernel panic messages related to camera drivers
SELinux/apparmor denials for camera operations

Network Indicators:

None - local exploitation only

SIEM Query:

source="android_logs" AND ("camera" AND ("crash" OR "segfault" OR "panic"))

📊 Metadata

CVE ID: CVE-2025-47334

CVSS v3 Score: 6.7 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-120

EPSS Score: 0.02% exploit probability (2.7th percentile)

Published: January 7, 2026

Last Updated: January 27, 2026

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/january-2026-bulletin.html Patch,Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6698au Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs410 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs610 Firmware by Qualcomm

Qcs615 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs7230 Firmware by Qualcomm

Qcs8250 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qcs9100 Firmware by Qualcomm

Qmp1000 Firmware by Qualcomm

Qrb5165m Firmware by Qualcomm

Qrb5165n Firmware by Qualcomm

Robotics Rb2 Platform Firmware by Qualcomm

Robotics Rb5 Platform Firmware by Qualcomm

Sa7255p Firmware by Qualcomm

Sa7775p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8620p Firmware by Qualcomm

Sa8650p Firmware by Qualcomm

Sa8770p Firmware by Qualcomm

Sa8775p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Sd 8 Gen1 5g Firmware by Qualcomm

Sg4150p Firmware by Qualcomm

Sg8275 Firmware by Qualcomm

Sg8275p Firmware by Qualcomm

Sm4635 Firmware by Qualcomm

Sm6225p Firmware by Qualcomm

Sm6475 Firmware by Qualcomm

Sm6650 Firmware by Qualcomm

Sm6650p Firmware by Qualcomm

Sm7325p Firmware by Qualcomm

Sm7435 Firmware by Qualcomm

Sm7550 Firmware by Qualcomm

Sm7550p Firmware by Qualcomm

Sm7635 Firmware by Qualcomm

Sm7635p Firmware by Qualcomm

Sm7675 Firmware by Qualcomm

Sm7675p Firmware by Qualcomm

Sm8475p Firmware by Qualcomm

Sm8550p Firmware by Qualcomm

Sm8635 Firmware by Qualcomm

Sm8635p Firmware by Qualcomm

Sm8650q Firmware by Qualcomm

Sm8735 Firmware by Qualcomm

Sm8750 Firmware by Qualcomm

Sm8750p Firmware by Qualcomm

Smart Audio 400 Platform Firmware by Qualcomm

Snapdragon 4 Gen 1 Mobile Platform Firmware by Qualcomm