Untrusted Pointer Dereference in TZ Firmware_CVE-2025-47325

6.5 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Description

Information disclosure while processing system calls with invalid parameters.

Basic Information

ID CVE-2025-47325

Source qualcomm

Published Dec 18, 2025 at 05:29

Affected Product

Vendor Qualcomm, Inc.

Product Snapdragon

Version CSR8811

Affected Versions Qualcomm, Inc. Snapdragon CSR8811
Qualcomm, Inc. Snapdragon IPQ8070
Qualcomm, Inc. Snapdragon IPQ8070A
Qualcomm, Inc. Snapdragon IPQ8071
Qualcomm, Inc. Snapdragon IPQ8071A
Qualcomm, Inc. Snapdragon IPQ8072
Qualcomm, Inc. Snapdragon IPQ8072A
Qualcomm, Inc. Snapdragon IPQ8074
Qualcomm, Inc. Snapdragon IPQ8074A
Qualcomm, Inc. Snapdragon IPQ8076
Qualcomm, Inc. Snapdragon IPQ8076A
Qualcomm, Inc. Snapdragon IPQ8078
Qualcomm, Inc. Snapdragon IPQ8078A
Qualcomm, Inc. Snapdragon IPQ8173
Qualcomm, Inc. Snapdragon IPQ8174
Qualcomm, Inc. Snapdragon PMP8074
Qualcomm, Inc. Snapdragon QCA4024
Qualcomm, Inc. Snapdragon QCA6428
Qualcomm, Inc. Snapdragon QCA6438
Qualcomm, Inc. Snapdragon QCA8072
Qualcomm, Inc. Snapdragon QCA8075
Qualcomm, Inc. Snapdragon QCA8081
Qualcomm, Inc. Snapdragon QCA9888
Qualcomm, Inc. Snapdragon QCA9889
Qualcomm, Inc. Snapdragon QCN5022
Qualcomm, Inc. Snapdragon QCN5024
Qualcomm, Inc. Snapdragon QCN5052
Qualcomm, Inc. Snapdragon QCN5054
Qualcomm, Inc. Snapdragon QCN5064
Qualcomm, Inc. Snapdragon QCN5122
Qualcomm, Inc. Snapdragon QCN5124
Qualcomm, Inc. Snapdragon QCN5152
Qualcomm, Inc. Snapdragon QCN5154
Qualcomm, Inc. Snapdragon QCN5164
Qualcomm, Inc. Snapdragon QCN5550
Qualcomm, Inc. Snapdragon QCN6023
Qualcomm, Inc. Snapdragon QCN6024
Qualcomm, Inc. Snapdragon QCN9000
Qualcomm, Inc. Snapdragon QCN9022
Qualcomm, Inc. Snapdragon QCN9024
Qualcomm, Inc. Snapdragon QCN9070
Qualcomm, Inc. Snapdragon QCN9072
Qualcomm, Inc. Snapdragon QCN9074
Qualcomm, Inc. Snapdragon SDX55

CWE Classification

CWE-822

References

docs.qualcomm.com /product/publicresources/securitybulletin/december-2025-bulletin.html

{
    "lastseen": "",
    "description": "Information disclosure while processing system calls with invalid parameters.",
    "published": "2025-12-18T05:29:06.626Z",
    "modified": "2025-12-18T05:29:06.626Z",
    "type": "cve",
    "title": "Untrusted Pointer Dereference in TZ Firmware",
    "source": "qualcomm",
    "references": "https://docs.qualcomm.com/product/publicresources/securitybulletin/december-2025-bulletin.html",
    "id": "CVE-2025-47325",
    "bulletinFamily": "",
    "cwe": [
        "CWE-822"
    ],
    "cvelist": null,
    "sourceData": "Qualcomm, Inc. Snapdragon CSR8811\nQualcomm, Inc. Snapdragon IPQ8070\nQualcomm, Inc. Snapdragon IPQ8070A\nQualcomm, Inc. Snapdragon IPQ8071\nQualcomm, Inc. Snapdragon IPQ8071A\nQualcomm, Inc. Snapdragon IPQ8072\nQualcomm, Inc. Snapdragon IPQ8072A\nQualcomm, Inc. Snapdragon IPQ8074\nQualcomm, Inc. Snapdragon IPQ8074A\nQualcomm, Inc. Snapdragon IPQ8076\nQualcomm, Inc. Snapdragon IPQ8076A\nQualcomm, Inc. Snapdragon IPQ8078\nQualcomm, Inc. Snapdragon IPQ8078A\nQualcomm, Inc. Snapdragon IPQ8173\nQualcomm, Inc. Snapdragon IPQ8174\nQualcomm, Inc. Snapdragon PMP8074\nQualcomm, Inc. Snapdragon QCA4024\nQualcomm, Inc. Snapdragon QCA6428\nQualcomm, Inc. Snapdragon QCA6438\nQualcomm, Inc. Snapdragon QCA8072\nQualcomm, Inc. Snapdragon QCA8075\nQualcomm, Inc. Snapdragon QCA8081\nQualcomm, Inc. Snapdragon QCA9888\nQualcomm, Inc. Snapdragon QCA9889\nQualcomm, Inc. Snapdragon QCN5022\nQualcomm, Inc. Snapdragon QCN5024\nQualcomm, Inc. Snapdragon QCN5052\nQualcomm, Inc. Snapdragon QCN5054\nQualcomm, Inc. Snapdragon QCN5064\nQualcomm, Inc. Snapdragon QCN5122\nQualcomm, Inc. Snapdragon QCN5124\nQualcomm, Inc. Snapdragon QCN5152\nQualcomm, Inc. Snapdragon QCN5154\nQualcomm, Inc. Snapdragon QCN5164\nQualcomm, Inc. Snapdragon QCN5550\nQualcomm, Inc. Snapdragon QCN6023\nQualcomm, Inc. Snapdragon QCN6024\nQualcomm, Inc. Snapdragon QCN9000\nQualcomm, Inc. Snapdragon QCN9022\nQualcomm, Inc. Snapdragon QCN9024\nQualcomm, Inc. Snapdragon QCN9070\nQualcomm, Inc. Snapdragon QCN9072\nQualcomm, Inc. Snapdragon QCN9074\nQualcomm, Inc. Snapdragon SDX55",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Snapdragon",
    "version": "CSR8811",
    "vendor": "Qualcomm, Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}