{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-47392", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "state": "PUBLISHED", "assignerShortName": "qualcomm", "dateReserved": "2025-05-06T08:33:16.275Z", "datePublished": "2026-04-06T15:33:43.837Z", "dateUpdated": "2026-04-07T03:55:44.389Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon MDM", "Snapdragon Mobile", "Snapdragon Small Cell", "Snapdragon WBC", "Snapdragon Wearables"], "product": "Snapdragon", "vendor": "Qualcomm, Inc.", "versions": [{"status": "affected", "version": "5G Fixed Wireless Access Platform"}, {"status": "affected", "version": "AR8035"}, {"status": "affected", "version": "CSRA6620"}, {"status": "affected", "version": "CSRA6640"}, {"status": "affected", "version": "FastConnect 6200"}, {"status": "affected", "version": "FastConnect 6700"}, {"status": "affected", "version": "FastConnect 6800"}, {"status": "affected", "version": "FastConnect 6900"}, {"status": "affected", "version": "FastConnect 7800"}, {"status": "affected", "version": "FSM200 Platform"}, {"status": "affected", "version": "FSM20055"}, {"status": "affected", "version": "FWA Gen 3 Ultra Platform"}, {"status": "affected", "version": "G1 Gen 1"}, {"status": "affected", "version": "Milos"}, {"status": "affected", "version": "Netrani"}, {"status": "affected", "version": "Orne"}, {"status": "affected", "version": "Palawan25"}, {"status": "affected", "version": "QCA6174A"}, {"status": "affected", "version": "QCA6391"}, {"status": "affected", "version": "QCA6574A"}, {"status": "affected", "version": "QCA6574AU"}, {"status": "affected", "version": "QCA6584AU"}, {"status": "affected", "version": "QCA6595AU"}, {"status": "affected", "version": "QCA6678AQ"}, {"status": "affected", "version": "QCA6688AQ"}, {"status": "affected", "version": "QCA6696"}, {"status": "affected", "version": "QCA6698AQ"}, {"status": "affected", "version": "QCA6698AU"}, {"status": "affected", "version": "QCA6797AQ"}, {"status": "affected", "version": "QCA8081"}, {"status": "affected", "version": "QCA8337"}, {"status": "affected", "version": "QCC710"}, {"status": "affected", "version": "QCM2290"}, {"status": "affected", "version": "QCM4325"}, {"status": "affected", "version": "QCM4490"}, {"status": "affected", "version": "QCM5430"}, {"status": "affected", "version": "QCM6490"}, {"status": "affected", "version": "QCN6024"}, {"status": "affected", "version": "QCN6224"}, {"status": "affected", "version": "QCN6274"}, {"status": "affected", "version": "QCN9011"}, {"status": "affected", "version": "QCN9012"}, {"status": "affected", "version": "QCN9024"}, {"status": "affected", "version": "QCS2290"}, {"status": "affected", "version": "QCS4290"}, {"status": "affected", "version": "QCS4490"}, {"status": "affected", "version": "QCS8550"}, {"status": "affected", "version": "QEP8111"}, {"status": "affected", "version": "QFW7114"}, {"status": "affected", "version": "QFW7124"}, {"status": "affected", "version": "QMP1000"}, {"status": "affected", "version": "Qualcomm Video Collaboration VC3 Platform"}, {"status": "affected", "version": "Robotics RB2 Platform"}, {"status": "affected", "version": "SD 8 Gen1 5G"}, {"status": "affected", "version": "SD662"}, {"status": "affected", "version": "SDX57M"}, {"status": "affected", "version": "SDX61"}, {"status": "affected", "version": "SDX71M"}, {"status": "affected", "version": "SM6225P"}, {"status": "affected", "version": "SM6250"}, {"status": "affected", "version": "SM6650P"}, {"status": "affected", "version": "SM7325P"}, {"status": "affected", "version": "SM7435"}, {"status": "affected", "version": "SM7550"}, {"status": "affected", "version": "SM7550P"}, {"status": "affected", "version": "SM7635P"}, {"status": "affected", "version": "SM7675"}, {"status": "affected", "version": "SM7675P"}, {"status": "affected", "version": "SM8475P"}, {"status": "affected", "version": "SM8550P"}, {"status": "affected", "version": "SM8635"}, {"status": "affected", "version": "SM8635P"}, {"status": "affected", "version": "SM8650Q"}, {"status": "affected", "version": "SM8750P"}, {"status": "affected", "version": "Snapdragon 4 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 4 Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 460 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 480 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 480+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 6 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 6 Gen 3 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 6 Gen 4 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 662 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 680 4G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 685 4G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 690 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 695 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 7 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 7+ Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 778G 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 778G+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 782G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 7c Compute Platform"}, {"status": "affected", "version": "Snapdragon 7c Gen 2 Compute Platform \"Rennell Pro\""}, {"status": "affected", "version": "Snapdragon 7c+ Gen 3 Compute"}, {"status": "affected", "version": "Snapdragon 7s Gen 3 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8 Elite"}, {"status": "affected", "version": "Snapdragon 8 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8 Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8 Gen 3 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8+ Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8+ Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 865 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 865+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 870 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 888 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 888+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon Auto 5G Modem-RF"}, {"status": "affected", "version": "Snapdragon Auto 5G Modem-RF Gen 2"}, {"status": "affected", "version": "Snapdragon W5+ Gen 1 Wearable Platform"}, {"status": "affected", "version": "Snapdragon X32 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X35 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X53 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X55 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X65 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X70 Modem-RF System"}, {"status": "affected", "version": "Snapdragon X72 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X75 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X80 5G Modem-RF System"}, {"status": "affected", "version": "SW5100"}, {"status": "affected", "version": "SW5100P"}, {"status": "affected", "version": "SW6100"}, {"status": "affected", "version": "SW6100P"}, {"status": "affected", "version": "Themisto"}, {"status": "affected", "version": "WCD9335"}, {"status": "affected", "version": "WCD9340"}, {"status": "affected", "version": "WCD9341"}, {"status": "affected", "version": "WCD9360"}, {"status": "affected", "version": "WCD9370"}, {"status": "affected", "version": "WCD9371"}, {"status": "affected", "version": "WCD9375"}, {"status": "affected", "version": "WCD9378"}, {"status": "affected", "version": "WCD9380"}, {"status": "affected", "version": "WCD9385"}, {"status": "affected", "version": "WCD9390"}, {"status": "affected", "version": "WCD9395"}, {"status": "affected", "version": "WCN3910"}, {"status": "affected", "version": "WCN3950"}, {"status": "affected", "version": "WCN3980"}, {"status": "affected", "version": "WCN3988"}, {"status": "affected", "version": "WCN6650"}, {"status": "affected", "version": "WCN6755"}, {"status": "affected", "version": "WCN7860"}, {"status": "affected", "version": "WCN7861"}, {"status": "affected", "version": "WCN7880"}, {"status": "affected", "version": "WCN7881"}, {"status": "affected", "version": "WSA8810"}, {"status": "affected", "version": "WSA8815"}, {"status": "affected", "version": "WSA8830"}, {"status": "affected", "version": "WSA8832"}, {"status": "affected", "version": "WSA8835"}, {"status": "affected", "version": "WSA8840"}, {"status": "affected", "version": "WSA8845"}, {"status": "affected", "version": "WSA8845H"}]}], "descriptions": [{"lang": "en", "value": "Memory corruption when decoding corrupted satellite data files with invalid signature offsets."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2026-04-06T15:33:43.837Z"}, "references": [{"url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html"}], "title": "Integer Overflow or Wraparound in GPS"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-06T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2025-47392"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-07T03:55:44.389Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-47392", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-06T16:11:45.410195Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-06T16:21:55.605Z"}}], "cna": {"title": "Integer Overflow or Wraparound in GPS", "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Qualcomm, Inc.", "product": "Snapdragon", "versions": [{"status": "affected", "version": "5G Fixed Wireless Access Platform"}, {"status": "affected", "version": "AR8035"}, {"status": "affected", "version": "CSRA6620"}, {"status": "affected", "version": "CSRA6640"}, {"status": "affected", "version": "FastConnect 6200"}, {"status": "affected", "version": "FastConnect 6700"}, {"status": "affected", "version": "FastConnect 6800"}, {"status": "affected", "version": "FastConnect 6900"}, {"status": "affected", "version": "FastConnect 7800"}, {"status": "affected", "version": "FSM200 Platform"}, {"status": "affected", "version": "FSM20055"}, {"status": "affected", "version": "FWA Gen 3 Ultra Platform"}, {"status": "affected", "version": "G1 Gen 1"}, {"status": "affected", "version": "Milos"}, {"status": "affected", "version": "Netrani"}, {"status": "affected", "version": "Orne"}, {"status": "affected", "version": "Palawan25"}, {"status": "affected", "version": "QCA6174A"}, {"status": "affected", "version": "QCA6391"}, {"status": "affected", "version": "QCA6574A"}, {"status": "affected", "version": "QCA6574AU"}, {"status": "affected", "version": "QCA6584AU"}, {"status": "affected", "version": "QCA6595AU"}, {"status": "affected", "version": "QCA6678AQ"}, {"status": "affected", "version": "QCA6688AQ"}, {"status": "affected", "version": "QCA6696"}, {"status": "affected", "version": "QCA6698AQ"}, {"status": "affected", "version": "QCA6698AU"}, {"status": "affected", "version": "QCA6797AQ"}, {"status": "affected", "version": "QCA8081"}, {"status": "affected", "version": "QCA8337"}, {"status": "affected", "version": "QCC710"}, {"status": "affected", "version": "QCM2290"}, {"status": "affected", "version": "QCM4325"}, {"status": "affected", "version": "QCM4490"}, {"status": "affected", "version": "QCM5430"}, {"status": "affected", "version": "QCM6490"}, {"status": "affected", "version": "QCN6024"}, {"status": "affected", "version": "QCN6224"}, {"status": "affected", "version": "QCN6274"}, {"status": "affected", "version": "QCN9011"}, {"status": "affected", "version": "QCN9012"}, {"status": "affected", "version": "QCN9024"}, {"status": "affected", "version": "QCS2290"}, {"status": "affected", "version": "QCS4290"}, {"status": "affected", "version": "QCS4490"}, {"status": "affected", "version": "QCS8550"}, {"status": "affected", "version": "QEP8111"}, {"status": "affected", "version": "QFW7114"}, {"status": "affected", "version": "QFW7124"}, {"status": "affected", "version": "QMP1000"}, {"status": "affected", "version": "Qualcomm Video Collaboration VC3 Platform"}, {"status": "affected", "version": "Robotics RB2 Platform"}, {"status": "affected", "version": "SD 8 Gen1 5G"}, {"status": "affected", "version": "SD662"}, {"status": "affected", "version": "SDX57M"}, {"status": "affected", "version": "SDX61"}, {"status": "affected", "version": "SDX71M"}, {"status": "affected", "version": "SM6225P"}, {"status": "affected", "version": "SM6250"}, {"status": "affected", "version": "SM6650P"}, {"status": "affected", "version": "SM7325P"}, {"status": "affected", "version": "SM7435"}, {"status": "affected", "version": "SM7550"}, {"status": "affected", "version": "SM7550P"}, {"status": "affected", "version": "SM7635P"}, {"status": "affected", "version": "SM7675"}, {"status": "affected", "version": "SM7675P"}, {"status": "affected", "version": "SM8475P"}, {"status": "affected", "version": "SM8550P"}, {"status": "affected", "version": "SM8635"}, {"status": "affected", "version": "SM8635P"}, {"status": "affected", "version": "SM8650Q"}, {"status": "affected", "version": "SM8750P"}, {"status": "affected", "version": "Snapdragon 4 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 4 Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 460 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 480 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 480+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 6 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 6 Gen 3 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 6 Gen 4 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 662 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 680 4G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 685 4G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 690 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 695 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 7 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 7+ Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 778G 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 778G+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 782G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 7c Compute Platform"}, {"status": "affected", "version": "Snapdragon 7c Gen 2 Compute Platform \"Rennell Pro\""}, {"status": "affected", "version": "Snapdragon 7c+ Gen 3 Compute"}, {"status": "affected", "version": "Snapdragon 7s Gen 3 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8 Elite"}, {"status": "affected", "version": "Snapdragon 8 Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8 Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8 Gen 3 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8+ Gen 1 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 8+ Gen 2 Mobile Platform"}, {"status": "affected", "version": "Snapdragon 865 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 865+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 870 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 888 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 888+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon Auto 5G Modem-RF"}, {"status": "affected", "version": "Snapdragon Auto 5G Modem-RF Gen 2"}, {"status": "affected", "version": "Snapdragon W5+ Gen 1 Wearable Platform"}, {"status": "affected", "version": "Snapdragon X32 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X35 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X53 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X55 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X65 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X70 Modem-RF System"}, {"status": "affected", "version": "Snapdragon X72 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X75 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon X80 5G Modem-RF System"}, {"status": "affected", "version": "SW5100"}, {"status": "affected", "version": "SW5100P"}, {"status": "affected", "version": "SW6100"}, {"status": "affected", "version": "SW6100P"}, {"status": "affected", "version": "Themisto"}, {"status": "affected", "version": "WCD9335"}, {"status": "affected", "version": "WCD9340"}, {"status": "affected", "version": "WCD9341"}, {"status": "affected", "version": "WCD9360"}, {"status": "affected", "version": "WCD9370"}, {"status": "affected", "version": "WCD9371"}, {"status": "affected", "version": "WCD9375"}, {"status": "affected", "version": "WCD9378"}, {"status": "affected", "version": "WCD9380"}, {"status": "affected", "version": "WCD9385"}, {"status": "affected", "version": "WCD9390"}, {"status": "affected", "version": "WCD9395"}, {"status": "affected", "version": "WCN3910"}, {"status": "affected", "version": "WCN3950"}, {"status": "affected", "version": "WCN3980"}, {"status": "affected", "version": "WCN3988"}, {"status": "affected", "version": "WCN6650"}, {"status": "affected", "version": "WCN6755"}, {"status": "affected", "version": "WCN7860"}, {"status": "affected", "version": "WCN7861"}, {"status": "affected", "version": "WCN7880"}, {"status": "affected", "version": "WCN7881"}, {"status": "affected", "version": "WSA8810"}, {"status": "affected", "version": "WSA8815"}, {"status": "affected", "version": "WSA8830"}, {"status": "affected", "version": "WSA8832"}, {"status": "affected", "version": "WSA8835"}, {"status": "affected", "version": "WSA8840"}, {"status": "affected", "version": "WSA8845"}, {"status": "affected", "version": "WSA8845H"}], "platforms": ["Snapdragon Auto", "Snapdragon Compute", "Snapdragon Consumer IOT", "Snapdragon Industrial IOT", "Snapdragon MDM", "Snapdragon Mobile", "Snapdragon Small Cell", "Snapdragon WBC", "Snapdragon Wearables"], "defaultStatus": "unaffected"}], "references": [{"url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html"}], "descriptions": [{"lang": "en", "value": "Memory corruption when decoding corrupted satellite data files with invalid signature offsets."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2026-04-06T15:33:43.837Z"}}}, "cveMetadata": {"cveId": "CVE-2025-47392", "state": "PUBLISHED", "dateUpdated": "2026-04-07T03:55:44.389Z", "dateReserved": "2025-05-06T08:33:16.275Z", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "datePublished": "2026-04-06T15:33:43.837Z", "assignerShortName": "qualcomm"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Memory corruption when decoding corrupted satellite data files with invalid signature offsets."}], "id": "CVE-2025-47392", "lastModified": "2026-04-06T16:16:28.223", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 5.9, "source": "product-security@qualcomm.com", "type": "Primary"}]}, "published": "2026-04-06T16:16:28.223", "references": [{"source": "product-security@qualcomm.com", "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html"}], "sourceIdentifier": "product-security@qualcomm.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-190"}], "source": "product-security@qualcomm.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-06T19:25:27.814780+00:00", "value": {"mitigation_remediation": ["Apply the latest Qualcomm firmware update that addresses the integer overflow in GPS data decoding.", "Verify that the device processes only signed or otherwise validated satellite data files before decoding.", "Monitor device logs for abnormal GPS service activity that could indicate exploitation attempts.", "If the update is not yet available, consider disabling the GPS functionality or restricting access to the relevant component until a patch is released."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Qualcomm, Inc. Snapdragon processors are affected. Specific model or firmware versions are not disclosed in the advisory, so all Snapdragon devices that utilize the GPS data decoding path described are potentially vulnerable.", "description_and_impact": "The flaw is an integer overflow or wraparound that occurs when the GPS module decodes corrupted satellite data files with invalid signature offsets. This memory corruption can allow a malicious file to overwrite critical memory regions and potentially lead to arbitrary code execution or other severe compromise of the device's integrity.", "risk_and_exploitability": "The CVSS score of 8.8 indicates high severity, and the EPSS score is not available, so the likelihood of exploitation in the wild is uncertain. However, the vulnerability can be triggered by supplying a specially crafted satellite data file, which could be possible in environments where the device receives untrusted data. The lack of a CISA KEV listing does not negate the potential for exploitation. The attack vector appears to be a local or remote file ingestion scenario, depending on how the GPS data is provided to the device, as inferred from the description."}}}}, "created": "2026-04-06T21:32:08.060592+00:00", "updated": "2026-04-06T21:32:08.060621+00:00", "vendors": []}