High

Memory corruption in Qualcomm DSP service buffer allocation

IdentifiersCVE-2025-47354CWE-119

CVE-2025-47354 is a Qualcomm vulnerability described in the provided content as memory corruption while allocating buffers in a DSP service. Based on the available information, the flaw occurs during buffer allocation logic in the DSP service and can lead to memory corruption. The issue is referenced as a high-severity Qualcomm-related vulnerability included in Google’s December 2025 Android Security Bulletin at the 2025-12-05 patch level. No further public technical detail about the exact vulnerable function, affected Qualcomm component version, or trigger path is provided in the supplied content.

For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial

ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation of this memory-corruption flaw could allow an attacker to destabilize the affected DSP service and potentially achieve more serious outcomes depending on exploitability, such as code execution within the vulnerable service context, privilege escalation across component boundaries, or compromise of device functionality tied to the DSP subsystem. However, the supplied content does not provide a vendor-confirmed impact statement beyond classifying the issue as a high-severity Qualcomm vulnerability.

Mitigation

If you can’t patch tonight, do this now.

Where immediate patching is not possible, reduce exposure by limiting use of affected devices to trusted applications and networks, restricting installation of untrusted or unnecessary software, and accelerating OEM/vendor firmware rollout validation. Enterprise defenders should verify that managed Android devices have received the 2025-12-05 patch level or vendor-equivalent update and should track vendor-specific remediation status, since Google patch level alone may not guarantee all Qualcomm fixes are present.

Remediation

Patch, then assume compromise.

Apply the December 2025 Android security updates that include the 2025-12-05 patch level, along with the corresponding Qualcomm/OEM-provided firmware and vendor component updates that address CVE-2025-47354. Because Qualcomm issues may depend on OEM integration schedules, remediation requires ensuring both the Android security patch level and the relevant vendor firmware updates have been deployed on affected devices.

PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType

QualcommFastconnect 6200 Firmwareoperating_system

QualcommFastconnect 6700 Firmwareoperating_system

QualcommFastconnect 7800 Firmwareoperating_system

QualcommQmp1000 Firmwareoperating_system

QualcommSm6475 Firmwareoperating_system

QualcommSm7435 Firmwareoperating_system

QualcommSm8735 Firmwareoperating_system

QualcommSm8750 Firmwareoperating_system

QualcommSm8750p Firmwareoperating_system

QualcommSnapdragon 4 Gen 2 Mobile Platform Firmwareoperating_system

QualcommSnapdragon 6 Gen 1 Mobile Platform Firmwareoperating_system

QualcommSnapdragon W5+ Gen 1 Wearable Platform Firmwareoperating_system

QualcommSw5100 Firmwareoperating_system

QualcommSw5100p Firmwareoperating_system

QualcommSxr2330p Firmwareoperating_system

QualcommSxr2350p Firmwareoperating_system

QualcommWcd9370 Firmwareoperating_system

QualcommWcd9375 Firmwareoperating_system

QualcommWcd9378 Firmwareoperating_system

QualcommWcd9380 Firmwareoperating_system

QualcommWcd9385 Firmwareoperating_system

QualcommWcd9395 Firmwareoperating_system

QualcommWcn3950 Firmwareoperating_system

QualcommWcn3988 Firmwareoperating_system

QualcommWcn6755 Firmwareoperating_system

QualcommWcn7750 Firmwareoperating_system

QualcommWcn7860 Firmwareoperating_system

QualcommWcn7861 Firmwareoperating_system

QualcommWcn7880 Firmwareoperating_system

QualcommWcn7881 Firmwareoperating_system

QualcommWsa8810 Firmwareoperating_system

QualcommWsa8815 Firmwareoperating_system

QualcommWsa8830 Firmwareoperating_system

QualcommWsa8832 Firmwareoperating_system

QualcommWsa8835 Firmwareoperating_system

QualcommWsa8840 Firmwareoperating_system

QualcommWsa8845 Firmwareoperating_system

QualcommWsa8845h Firmwareoperating_system

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

3 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

3 SOURCESView more in app

socradar blogNews

Dec 2, 2025

December 2025 Android Security Bulletin: Two Zero-Day Flaws Exploited

High-severity Qualcomm-related kernel/bootloader vulnerability referenced as fixed in the December 2025 Android bulletin (details deferred to Qualcomm advisories).

cyberthroneNews

Dec 2, 2025

Android Patch Update December 2025

High-severity Qualcomm component vulnerability referenced as addressed in Qualcomm’s December 2025 bulletin (vendor/OEM patch dependent).

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.

Start free trial

Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity1

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES

MITRE CVE

cve.org · CVE-2025-47354

NVD

nvd.nist.gov/vuln/detail/CVE-2025-47354

MITRE CWE · CWE-119

cwe.mitre.org

Vendor Advisory

docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html