Vulnerabilities ›

CVE-2025-47374

Medium

CWE-416 — Weakness Type

                    Published: Apr 6, 2026                      ·  Modified: Apr 9, 2026                      ·  Source: NVD                

CVSS v3

6.5

🔗 NVD Official

📄 Description (English)

Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling.

🤖 AI Executive Summary

CVE-2025-47374 is a use-after-free memory corruption vulnerability in Qualcomm FastConnect and related WiFi/connectivity firmware affecting multiple chipset models. The vulnerability occurs during concurrent fence deregistration and signal handling, potentially allowing local attackers to cause denial of service or execute arbitrary code. With no patch currently available and widespread deployment in Saudi telecommunications and enterprise infrastructure, immediate mitigation strategies are critical.

📄 Description (Arabic)

🤖 AI Intelligence Analysis Analyzed: May 11, 2026 05:01

🇸🇦 Saudi Arabia Impact Assessment

This vulnerability primarily impacts Saudi telecommunications sector (STC, Mobily, Zain) through affected WiFi chipsets in network infrastructure and customer premises equipment. Government agencies (NCA, CITC) managing critical communications networks face operational risk. Banking sector (SAMA-regulated institutions) using affected Qualcomm chipsets in ATMs, POS systems, and secure networks could experience service disruptions. Healthcare organizations relying on WiFi-enabled medical devices and enterprise networks are at moderate risk. Energy sector (ARAMCO, utilities) with industrial IoT deployments using these chipsets face potential operational technology disruptions.

🏢 Affected Saudi Sectors

Telecommunications (STC, Mobily, Zain) Government (NCA, CITC) Banking (SAMA-regulated institutions) Healthcare Energy (ARAMCO, utilities) Enterprise IT

🎯 MITRE ATT&CK Techniques

T1499 - Denial of Service T1203 - Exploitation for Client Execution T1190 - Exploit Public-Facing Application T1068 - Exploitation for Privilege Escalation T1561 - Disk Wipe

⚖️ Saudi Risk Score (AI)

7.2

/ 10.0

🔧 Remediation Steps (English)

IMMEDIATE ACTIONS:

1. Inventory all devices using affected Qualcomm FastConnect 6900, 7800, Pandeiro, and QPA/QPA/QXM series chipsets across your organization

2. Isolate or restrict local access to affected devices where feasible

3. Monitor for unusual system crashes, memory corruption errors, or unexpected reboots

4. Implement network segmentation to limit lateral movement from compromised devices



COMPENSATING CONTROLS (until patch available):

5. Disable concurrent fence operations if supported by device firmware/drivers

6. Implement strict access controls limiting local user privileges on affected systems

7. Deploy endpoint detection and response (EDR) solutions to monitor for exploitation attempts

8. Enable memory protection features (ASLR, DEP/NX) at OS level where applicable



DETECTION:

9. Monitor system logs for: kernel panic messages, memory access violations, unexpected signal handling errors

10. Alert on: repeated fence deregistration failures, concurrent signal processing anomalies

11. Track firmware versions and maintain inventory of unpatched devices



PATCHING STRATEGY:

12. Subscribe to Qualcomm security advisories for patch availability

13. Establish expedited testing and deployment process for when patches release

14. Prioritize patching for devices in high-risk environments (banking, government, telecom)

🔧 خطوات المعالجة (العربية)

الإجراءات الفورية:

1. قم بحصر جميع الأجهزة التي تستخدم رقاقات Qualcomm FastConnect 6900 و7800 و Pandeiro و QPA/QPA/QXM المتأثرة عبر مؤسستك

2. عزل أو تقييد الوصول المحلي للأجهزة المتأثرة حيث أمكن

3. مراقبة أعطال النظام غير العادية وأخطاء تسرب الذاكرة وإعادة التشغيل غير المتوقعة

4. تطبيق تقسيم الشبكة لتحديد الحركة الجانبية من الأجهزة المخترقة

الضوابط التعويضية (حتى توفر التصحيح):

5. تعطيل عمليات السياج المتزامنة إن أمكن من خلال برامج ثابتة/برامج تشغيل الجهاز

6. تطبيق ضوابط وصول صارمة تحد من امتيازات المستخدم المحلي على الأنظمة المتأثرة

7. نشر حلول كشف الاستجابة للنقاط النهائية لمراقبة محاولات الاستغلال

8. تفعيل ميزات حماية الذاكرة (ASLR و DEP/NX) على مستوى نظام التشغيل حيث ينطبق

الكشف:

9. مراقبة سجلات النظام: رسائل kernel panic وأخطاء الوصول للذاكرة وأخطاء معالجة الإشارات غير المتوقعة

10. التنبيه على: فشل إلغاء تسجيل السياج المتكرر وشذوذ معالجة الإشارات المتزامنة

11. تتبع إصدارات البرامج الثابتة والحفاظ على جرد الأجهزة غير المصححة

استراتيجية التصحيح:

12. الاشتراك في تنبيهات أمان Qualcomm لتوفر التصحيحات

13. إنشاء عملية اختبار ونشر معجلة عند إصدار التصحيحات

14. أولويات التصحيح للأجهزة في البيئات عالية المخاطر (البنوك والحكومة والاتصالات)

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.12.2.1 - Change management procedures for system updates A.12.6.1 - Management of technical vulnerabilities A.14.2.1 - Secure development policy A.16.1.5 - Response to information security incidents

🔵 SAMA CSF

ID.RA-1 - Asset management and vulnerability identification PR.IP-12 - System development and maintenance DE.CM-8 - Vulnerability scans and assessments RS.RP-1 - Response planning and procedures

🟡 ISO 27001:2022

A.12.2.1 - Change management A.12.6.1 - Management of technical vulnerabilities A.14.2.1 - Secure development policy A.16.1.1 - Responsibilities and procedures

🟣 PCI DSS v4.0.1

6.2 - Security patches and updates 11.2 - Vulnerability scanning 12.10 - Incident response procedures

🔗 References & Sources 1

🔗

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin....

product-security@qualcomm.com

Patch Vendor Advisory

📦 Affected Products / CPE 30 entries

qualcomm:fastconnect_6900_firmware:-

qualcomm:fastconnect_7800_firmware:-

qualcomm:pandeiro_firmware:-

qualcomm:qln1083bd_firmware:-

qualcomm:qln1086bd_firmware:-

qualcomm:qpa1083bd_firmware:-

qualcomm:qpa1086bd_firmware:-

qualcomm:qxm1083_firmware:-

qualcomm:qxm1086_firmware:-

qualcomm:qxm1093_firmware:-

qualcomm:qxm1094_firmware:-

qualcomm:qxm1095_firmware:-

qualcomm:qxm1096_firmware:-

qualcomm:sar1165p_firmware:-

qualcomm:sar2130p_firmware:-

qualcomm:snapdragon_ar1_gen_1_platform_firmware:-

qualcomm:snapdragon_ar1\+_gen_1_platform_firmware:-

qualcomm:sxr2230p_firmware:-

qualcomm:sxr2250p_firmware:-

qualcomm:sxr2330p_firmware:-

qualcomm:sxr2350p_firmware:-

qualcomm:wcd9380_firmware:-

qualcomm:wcd9385_firmware:-

qualcomm:wcn7860_firmware:-

qualcomm:wcn7861_firmware:-

qualcomm:wsa8830_firmware:-

qualcomm:wsa8832_firmware:-

qualcomm:wsa8835_firmware:-

qualcomm:xrv7209_firmware:-

qualcomm:xrv9209_firmware:-

📊 CVSS Score

6.5

/ 10.0 — Medium

📊 CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

Attack VectorL — Low / Local

Attack ComplexityH — High

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityL — Low / Local

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity Medium

CVSS Score6.5

CWECWE-416

EPSS0.01%

Exploit No

Patch ✗ No

Published 2026-04-06

Source Feed nvd

🇸🇦 Saudi Risk Score

7.2

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

CWE-416

🏢 Vendor Advisories

🔗 https://docs.qualcomm.com/product/publicresources/se...

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

CVE-2025-47374

Introduce Yourself

Sign In Required