CVE-2025-47398

7.8 HIGH

📋 TL;DR

This CVE describes a use-after-free vulnerability in Qualcomm GPU memory management where improper pointer handling during buffer deallocation can cause memory corruption. Attackers could exploit this to execute arbitrary code or cause denial of service. This affects devices using vulnerable Qualcomm GPU drivers.

💻 Affected Systems

Products:

• Qualcomm Adreno GPU drivers
• Devices with Qualcomm Snapdragon processors

Versions: Specific versions not detailed in reference; check Qualcomm advisory for affected driver versions

Operating Systems: Android, Linux-based systems with Qualcomm GPU support

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems using vulnerable Qualcomm GPU drivers. Mobile devices and embedded systems are primarily impacted.

📦 What is this software?

Ar8031 Firmware by Qualcomm

View all CVEs affecting Ar8031 Firmware →

Csra6620 Firmware by Qualcomm

View all CVEs affecting Csra6620 Firmware →

Csra6640 Firmware by Qualcomm

View all CVEs affecting Csra6640 Firmware →

Fastconnect 6200 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6200 Firmware →

Fastconnect 6700 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6700 Firmware →

Fastconnect 6900 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6900 Firmware →

Fastconnect 7800 Firmware by Qualcomm

View all CVEs affecting Fastconnect 7800 Firmware →

Flight Rb5 5g Firmware by Qualcomm

View all CVEs affecting Flight Rb5 5g Firmware →

G1 Gen 1 Firmware by Qualcomm

View all CVEs affecting G1 Gen 1 Firmware →

G2 Gen 1 Firmware by Qualcomm

View all CVEs affecting G2 Gen 1 Firmware →

Iq 615 Firmware by Qualcomm

View all CVEs affecting Iq 615 Firmware →

Iq 8275 Firmware by Qualcomm

View all CVEs affecting Iq 8275 Firmware →

Iq 8300 Firmware by Qualcomm

View all CVEs affecting Iq 8300 Firmware →

Iq 9075 Firmware by Qualcomm

View all CVEs affecting Iq 9075 Firmware →

Iq 9100 Firmware by Qualcomm

View all CVEs affecting Iq 9100 Firmware →

Lemans Au Lgit Firmware by Qualcomm

View all CVEs affecting Lemans Au Lgit Firmware →

Lemansau Firmware by Qualcomm

View all CVEs affecting Lemansau Firmware →

Milos Firmware by Qualcomm

View all CVEs affecting Milos Firmware →

Monaco Iot Firmware by Qualcomm

View all CVEs affecting Monaco Iot Firmware →

Netrani Firmware by Qualcomm

View all CVEs affecting Netrani Firmware →

Orne Firmware by Qualcomm

View all CVEs affecting Orne Firmware →

Palawan25 Firmware by Qualcomm

View all CVEs affecting Palawan25 Firmware →

Qam8255p Firmware by Qualcomm

View all CVEs affecting Qam8255p Firmware →

Qam8295p Firmware by Qualcomm

View all CVEs affecting Qam8295p Firmware →

Qamsrv1h Firmware by Qualcomm

View all CVEs affecting Qamsrv1h Firmware →

Qamsrv1m Firmware by Qualcomm

View all CVEs affecting Qamsrv1m Firmware →

Qca2066 Firmware by Qualcomm

View all CVEs affecting Qca2066 Firmware →

Qca6391 Firmware by Qualcomm

View all CVEs affecting Qca6391 Firmware →

Qca6574 Firmware by Qualcomm

View all CVEs affecting Qca6574 Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6574au Firmware by Qualcomm

View all CVEs affecting Qca6574au Firmware →

Qca6595 Firmware by Qualcomm

View all CVEs affecting Qca6595 Firmware →

Qca6595au Firmware by Qualcomm

View all CVEs affecting Qca6595au Firmware →

Qca6678aq Firmware by Qualcomm

View all CVEs affecting Qca6678aq Firmware →

Qca6688aq Firmware by Qualcomm

View all CVEs affecting Qca6688aq Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Qca6698aq Firmware by Qualcomm

View all CVEs affecting Qca6698aq Firmware →

Qca6698au Firmware by Qualcomm

View all CVEs affecting Qca6698au Firmware →

Qca6797aq Firmware by Qualcomm

View all CVEs affecting Qca6797aq Firmware →

Qca8695au Firmware by Qualcomm

View all CVEs affecting Qca8695au Firmware →

Qcm2290 Firmware by Qualcomm

View all CVEs affecting Qcm2290 Firmware →

Qcm4325 Firmware by Qualcomm

View all CVEs affecting Qcm4325 Firmware →

Qcm4490 Firmware by Qualcomm

View all CVEs affecting Qcm4490 Firmware →

Qcm5430 Firmware by Qualcomm

View all CVEs affecting Qcm5430 Firmware →

Qcm6125 Firmware by Qualcomm

View all CVEs affecting Qcm6125 Firmware →

Qcm6490 Firmware by Qualcomm

View all CVEs affecting Qcm6490 Firmware →

Qcn9011 Firmware by Qualcomm

View all CVEs affecting Qcn9011 Firmware →

Qcn9012 Firmware by Qualcomm

View all CVEs affecting Qcn9012 Firmware →

Qcs2290 Firmware by Qualcomm

View all CVEs affecting Qcs2290 Firmware →

Qcs410 Firmware by Qualcomm

View all CVEs affecting Qcs410 Firmware →

Qcs4290 Firmware by Qualcomm

View all CVEs affecting Qcs4290 Firmware →

Qcs4490 Firmware by Qualcomm

View all CVEs affecting Qcs4490 Firmware →

Qcs8550 Firmware by Qualcomm

View all CVEs affecting Qcs8550 Firmware →

Qmp1000 Firmware by Qualcomm

View all CVEs affecting Qmp1000 Firmware →

Qrb5165n Firmware by Qualcomm

View all CVEs affecting Qrb5165n Firmware →

Robotics Rb2 Firmware by Qualcomm

View all CVEs affecting Robotics Rb2 Firmware →

Robotics Rb5 Firmware by Qualcomm

View all CVEs affecting Robotics Rb5 Firmware →

Sa6155p Firmware by Qualcomm

View all CVEs affecting Sa6155p Firmware →

Sa7255p Firmware by Qualcomm

View all CVEs affecting Sa7255p Firmware →

Sa7775p Firmware by Qualcomm

View all CVEs affecting Sa7775p Firmware →

Sa8155p Firmware by Qualcomm

View all CVEs affecting Sa8155p Firmware →

Sa8195p Firmware by Qualcomm

View all CVEs affecting Sa8195p Firmware →

Sa8255p Firmware by Qualcomm

View all CVEs affecting Sa8255p Firmware →

Sa8295p Firmware by Qualcomm

View all CVEs affecting Sa8295p Firmware →

Sa8620p Firmware by Qualcomm

View all CVEs affecting Sa8620p Firmware →

Sa8770p Firmware by Qualcomm

View all CVEs affecting Sa8770p Firmware →

Sa9000p Firmware by Qualcomm

View all CVEs affecting Sa9000p Firmware →

Sar2130p Firmware by Qualcomm

View all CVEs affecting Sar2130p Firmware →

Sd662 Firmware by Qualcomm

View all CVEs affecting Sd662 Firmware →

Sda660 Firmware by Qualcomm

View all CVEs affecting Sda660 Firmware →

Sm6225p Firmware by Qualcomm

View all CVEs affecting Sm6225p Firmware →

Sm6650p Firmware by Qualcomm

View all CVEs affecting Sm6650p Firmware →

Sm7435 Firmware by Qualcomm

View all CVEs affecting Sm7435 Firmware →

Sm7550 Firmware by Qualcomm

View all CVEs affecting Sm7550 Firmware →

Sm7550p Firmware by Qualcomm

View all CVEs affecting Sm7550p Firmware →

Sm7635p Firmware by Qualcomm

View all CVEs affecting Sm7635p Firmware →

Sm7675 Firmware by Qualcomm

View all CVEs affecting Sm7675 Firmware →

Sm7675p Firmware by Qualcomm

View all CVEs affecting Sm7675p Firmware →

Sm8475p Firmware by Qualcomm

View all CVEs affecting Sm8475p Firmware →

Sm8550p Firmware by Qualcomm

View all CVEs affecting Sm8550p Firmware →

Sm8635 Firmware by Qualcomm

View all CVEs affecting Sm8635 Firmware →

Sm8635p Firmware by Qualcomm

View all CVEs affecting Sm8635p Firmware →

Sm8650q Firmware by Qualcomm

View all CVEs affecting Sm8650q Firmware →

Sm8750p Firmware by Qualcomm

View all CVEs affecting Sm8750p Firmware →

Smart Audio 400 Firmware by Qualcomm

View all CVEs affecting Smart Audio 400 Firmware →

Snapdragon 4 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 4 Gen 1 Mobile Firmware →

Snapdragon 4 Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 4 Gen 2 Mobile Firmware →

Snapdragon 460 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 460 Mobile Firmware →

Snapdragon 480 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 480 5g Mobile Firmware →

Snapdragon 480 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 480 5g Mobile Firmware →

Snapdragon 6 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 6 Gen 1 Mobile Firmware →

Snapdragon 6 Gen 3 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 6 Gen 3 Mobile Firmware →

Snapdragon 6 Gen 4 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 6 Gen 4 Mobile Firmware →

Snapdragon 660 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 660 Mobile Firmware →

Snapdragon 662 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 662 Mobile Firmware →

Snapdragon 680 4g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 680 4g Mobile Firmware →

Snapdragon 685 4g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 685 4g Mobile Firmware →

Snapdragon 695 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 695 5g Mobile Firmware →

Snapdragon 7 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 7 Gen 1 Mobile Firmware →

Snapdragon 7\+ Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 7\+ Gen 2 Mobile Firmware →

Snapdragon 7s Gen 3 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 7s Gen 3 Mobile Firmware →

Snapdragon 8 Elite Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Elite Firmware →

Snapdragon 8 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 1 Mobile Firmware →

Snapdragon 8 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 1 Mobile Firmware →

Snapdragon 8 Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 2 Mobile Firmware →

Snapdragon 8 Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 2 Mobile Firmware →

Snapdragon 8 Gen 3 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 3 Mobile Firmware →

Snapdragon 8 Gen1 5g Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen1 5g Firmware →

Snapdragon Ar1 Gen 1 Firmware by Qualcomm

View all CVEs affecting Snapdragon Ar1 Gen 1 Firmware →

Snapdragon W5\+ Gen 1 Wearable Firmware by Qualcomm

View all CVEs affecting Snapdragon W5\+ Gen 1 Wearable Firmware →

Srv1h Firmware by Qualcomm

View all CVEs affecting Srv1h Firmware →

Srv1m Firmware by Qualcomm

View all CVEs affecting Srv1m Firmware →

Ssg2115p Firmware by Qualcomm

View all CVEs affecting Ssg2115p Firmware →

Ssg2125p Firmware by Qualcomm

View all CVEs affecting Ssg2125p Firmware →

Sw5100 Firmware by Qualcomm

View all CVEs affecting Sw5100 Firmware →

Sw5100p Firmware by Qualcomm

View all CVEs affecting Sw5100p Firmware →

Sxr1230p Firmware by Qualcomm

View all CVEs affecting Sxr1230p Firmware →

Sxr2230p Firmware by Qualcomm

View all CVEs affecting Sxr2230p Firmware →

Sxr2250p Firmware by Qualcomm

View all CVEs affecting Sxr2250p Firmware →

Sxr2330p Firmware by Qualcomm

View all CVEs affecting Sxr2330p Firmware →

Sxr2350p Firmware by Qualcomm

View all CVEs affecting Sxr2350p Firmware →

Video Collaboration Vc1 Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc1 Firmware →

Video Collaboration Vc3 Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc3 Firmware →

Video Collaboration Vc5 Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc5 Firmware →

Wcd9335 Firmware by Qualcomm

View all CVEs affecting Wcd9335 Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9371 Firmware by Qualcomm

View all CVEs affecting Wcd9371 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9378 Firmware by Qualcomm

View all CVEs affecting Wcd9378 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcd9390 Firmware by Qualcomm

View all CVEs affecting Wcd9390 Firmware →

Wcd9395 Firmware by Qualcomm

View all CVEs affecting Wcd9395 Firmware →

Wcn3910 Firmware by Qualcomm

View all CVEs affecting Wcn3910 Firmware →

Wcn3950 Firmware by Qualcomm

View all CVEs affecting Wcn3950 Firmware →

Wcn3980 Firmware by Qualcomm

View all CVEs affecting Wcn3980 Firmware →

Wcn3988 Firmware by Qualcomm

View all CVEs affecting Wcn3988 Firmware →

Wcn3990 Firmware by Qualcomm

View all CVEs affecting Wcn3990 Firmware →

Wcn6650 Firmware by Qualcomm

View all CVEs affecting Wcn6650 Firmware →

Wcn6755 Firmware by Qualcomm

View all CVEs affecting Wcn6755 Firmware →

Wcn7860 Firmware by Qualcomm

View all CVEs affecting Wcn7860 Firmware →

Wcn7861 Firmware by Qualcomm

View all CVEs affecting Wcn7861 Firmware →

Wcn7880 Firmware by Qualcomm

View all CVEs affecting Wcn7880 Firmware →

Wcn7881 Firmware by Qualcomm

View all CVEs affecting Wcn7881 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wsa8830 Firmware by Qualcomm

View all CVEs affecting Wsa8830 Firmware →

Wsa8832 Firmware by Qualcomm

View all CVEs affecting Wsa8832 Firmware →

Wsa8835 Firmware by Qualcomm

View all CVEs affecting Wsa8835 Firmware →

Wsa8840 Firmware by Qualcomm

View all CVEs affecting Wsa8840 Firmware →

Wsa8845 Firmware by Qualcomm

View all CVEs affecting Wsa8845 Firmware →

Wsa8845h Firmware by Qualcomm

View all CVEs affecting Wsa8845h Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with kernel-level code execution, allowing complete device control and data exfiltration.

🟠

Likely Case

Local privilege escalation from user to kernel space, application crashes, or system instability.

🟢

If Mitigated

Contained privilege escalation with limited impact due to sandboxing or SELinux policies.

🌐 Internet-Facing: LOW (requires local access or malicious app installation)

🏢 Internal Only: MEDIUM (could be exploited via malicious apps or compromised internal users)

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires local access and knowledge of GPU memory management. No public exploits known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm security bulletin for specific patched driver versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2026-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm security bulletin for affected driver versions. 2. Obtain updated GPU drivers from device manufacturer or Qualcomm. 3. Apply driver updates following vendor instructions. 4. Reboot device to load new drivers.

🔧 Temporary Workarounds

Restrict GPU access

android

Limit which applications can access GPU functions through SELinux or app permissions

Disable unnecessary GPU features

all

Turn off GPU acceleration for non-critical applications if possible

🧯 If You Can't Patch

• Implement strict application vetting and installation controls
• Use security solutions that detect memory corruption attempts

🔍 How to Verify

Check if Vulnerable:

Copy

Check GPU driver version against Qualcomm's affected versions list in the security bulletin

Check Version:

Copy

On Android: 'adb shell dumpsys | grep -i adreno' or check device settings > About phone > GPU driver version

Verify Fix Applied:

Copy

Verify GPU driver version has been updated to patched version specified by Qualcomm

📡 Detection & Monitoring

Log Indicators:

• Kernel panic logs
• GPU driver crash reports
• Memory access violation errors in system logs

Network Indicators:

• None - this is a local vulnerability

SIEM Query:

Copy

Search for: 'GPU driver crash', 'kernel panic', 'segmentation fault' in system logs

📊 Metadata

CVE ID: CVE-2025-47398

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-416

EPSS Score: 0.01% exploit probability (0.3th percentile)

Published: February 2, 2026

Last Updated: February 11, 2026

🔗 References

• https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2026-bulletin.html Patch,Vendor Advisory

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-47398, you might also want to check these:

CVE-2025-24085 10.0

This CVE describes a use-after-free vulnerability (CWE-416) in Apple operating systems that allows m...

Same vulnerability type (CWE-416)

CVE-2024-43102 10.0

This CVE describes a use-after-free vulnerability in FreeBSD's umtx (user mutex) subsystem where con...

Same vulnerability type (CWE-416)

CVE-2021-33796 10.0

CVE-2021-33796 is a use-after-free vulnerability in MuJS's regexp source property access that can le...

Same vulnerability type (CWE-416)