{"id":18885,"date":"2025-09-24T10:56:26","date_gmt":"2025-09-24T10:56:26","guid":{"rendered":"http:\/\/localhost\/?p=18885"},"modified":"2025-09-24T10:56:26","modified_gmt":"2025-09-24T10:56:26","slug":"buffer-over-read-in-bt-controller","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=18885","title":{"rendered":"Buffer Over-read in BT Controller_CVE-2025-47317"},"content":{"rendered":"

{“lastseen”:””,”description”:”Memory corruption due to global buffer overflow when a test command uses an invalid payload type.”,”published”:”2025-09-24T15:33:49.869Z”,”modified”:”2025-09-24T15:33:49.869Z”,”type”:”cve”,”title”:”Buffer Over-read in BT Controller”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/september-2025-bulletin.html”,”id”:”CVE-2025-47317″,”bulletinFamily”:””,”cwe”:[“CWE-126″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon FastConnect 6200\\nQualcomm, Inc. Snapdragon FastConnect 6700\\nQualcomm, Inc. Snapdragon FastConnect 7800\\nQualcomm, Inc. Snapdragon QCC5161\\nQualcomm, Inc. Snapdragon QCC710\\nQualcomm, Inc. Snapdragon QCC711\\nQualcomm, Inc. Snapdragon QCC7225\\nQualcomm, Inc. Snapdragon QCC7226\\nQualcomm, Inc. Snapdragon QCC7228\\nQualcomm, Inc. Snapdragon QMP1000\\nQualcomm, Inc. Snapdragon S3 Gen 2 Sound Platform\\nQualcomm, Inc. Snapdragon S3 Sound Platform\\nQualcomm, Inc. Snapdragon S5 Gen 2 Sound Platform\\nQualcomm, Inc. Snapdragon S5 Sound Platform\\nQualcomm, Inc. Snapdragon SM6475\\nQualcomm, Inc. Snapdragon SM6650\\nQualcomm, Inc. Snapdragon SM6650P\\nQualcomm, Inc. Snapdragon SM7435\\nQualcomm, Inc. Snapdragon SM7550\\nQualcomm, Inc. Snapdragon SM7550P\\nQualcomm, Inc. Snapdragon SM7635\\nQualcomm, Inc. Snapdragon SM7635P\\nQualcomm, Inc. Snapdragon SM7675\\nQualcomm, Inc. Snapdragon SM7675P\\nQualcomm, Inc. Snapdragon SM8635\\nQualcomm, Inc. Snapdragon SM8635P\\nQualcomm, Inc. Snapdragon SM8735\\nQualcomm, Inc. Snapdragon SM8750\\nQualcomm, Inc. Snapdragon SM8750P\\nQualcomm, Inc. Snapdragon Snapdragon 6 Gen 1 Mobile Platform\\nQualcomm, Inc. Snapdragon WCD9370\\nQualcomm, Inc. Snapdragon WCD9371\\nQualcomm, Inc. Snapdragon WCD9375\\nQualcomm, Inc. Snapdragon WCD9378\\nQualcomm, Inc. Snapdragon WCD9385\\nQualcomm, Inc. Snapdragon WCD9390\\nQualcomm, Inc. Snapdragon WCD9395\\nQualcomm, Inc. Snapdragon WCN3988\\nQualcomm, Inc. Snapdragon WCN6650\\nQualcomm, Inc. Snapdragon WCN6755\\nQualcomm, Inc. Snapdragon WCN7750\\nQualcomm, Inc. Snapdragon WCN7860\\nQualcomm, Inc. Snapdragon WCN7861\\nQualcomm, Inc. Snapdragon WCN7880\\nQualcomm, Inc. Snapdragon WCN7881\\nQualcomm, Inc. Snapdragon WSA8810\\nQualcomm, Inc. Snapdragon WSA8815\\nQualcomm, Inc. Snapdragon WSA8830\\nQualcomm, Inc. Snapdragon WSA8832\\nQualcomm, Inc. Snapdragon WSA8835\\nQualcomm, Inc. Snapdragon WSA8840\\nQualcomm, Inc. Snapdragon WSA8845\\nQualcomm, Inc. Snapdragon WSA8845H”,”sourceHref”:””,”cvss”:{“score”:7.8,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Snapdragon”,”version”:”FastConnect 6200″,”vendor”:”Qualcomm, Inc.”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:””,”description”:”Memory corruption due to global buffer overflow when a test command uses an invalid payload type.”,”published”:”2025-09-24T15:33:49.869Z”,”modified”:”2025-09-24T15:33:49.869Z”,”type”:”cve”,”title”:”Buffer Over-read in BT Controller”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/september-2025-bulletin.html”,”id”:”CVE-2025-47317″,”bulletinFamily”:””,”cwe”:[“CWE-126″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon FastConnect 6200\\nQualcomm, Inc….<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,28,12,15,13,7,11,5],"class_list":["post-18885","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-78","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\nBuffer Over-read in BT Controller_CVE-2025-47317 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=18885\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Buffer Over-read in BT Controller_CVE-2025-47317 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:””,”description”:”Memory corruption due to global buffer overflow when a test command uses an invalid payload type.”,”published”:”2025-09-24T15:33:49.869Z”,”modified”:”2025-09-24T15:33:49.869Z”,”type”:”cve”,”title”:”Buffer Over-read in BT Controller”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/september-2025-bulletin.html”,”id”:”CVE-2025-47317″,”bulletinFamily”:””,”cwe”:[“CWE-126″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon FastConnect 6200nQualcomm, Inc....\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=18885\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2025-09-24T10:56:26+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"Buffer Over-read in BT Controller_CVE-2025-47317\",\"datePublished\":\"2025-09-24T10:56:26+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885\"},\"wordCount\":373,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"CVSS-7.8\",\"exploit\",\"HIGH\",\"news\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_cve\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=18885#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885\",\"name\":\"Buffer Over-read in BT Controller_CVE-2025-47317 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2025-09-24T10:56:26+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=18885\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=18885#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Buffer Over-read in BT Controller_CVE-2025-47317\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Buffer Over-read in BT Controller_CVE-2025-47317 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=18885","og_locale":"en_US","og_type":"article","og_title":"Buffer Over-read in BT Controller_CVE-2025-47317 - zero redgem","og_description":"{“lastseen”:””,”description”:”Memory corruption due to global buffer overflow when a test command uses an invalid payload type.”,”published”:”2025-09-24T15:33:49.869Z”,”modified”:”2025-09-24T15:33:49.869Z”,”type”:”cve”,”title”:”Buffer Over-read in BT Controller”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/september-2025-bulletin.html”,”id”:”CVE-2025-47317″,”bulletinFamily”:””,”cwe”:[“CWE-126″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon FastConnect 6200nQualcomm, Inc....","og_url":"https:\/\/zero.redgem.net\/?p=18885","og_site_name":"zero redgem","article_published_time":"2025-09-24T10:56:26+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=18885#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=18885"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"Buffer Over-read in BT Controller_CVE-2025-47317","datePublished":"2025-09-24T10:56:26+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=18885"},"wordCount":373,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","CVSS-7.8","exploit","HIGH","news","Security","tapic","Vulnerability"],"articleSection":["category_cve"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=18885#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=18885","url":"https:\/\/zero.redgem.net\/?p=18885","name":"Buffer Over-read in BT Controller_CVE-2025-47317 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2025-09-24T10:56:26+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=18885#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=18885"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=18885#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"Buffer Over-read in BT Controller_CVE-2025-47317"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/18885","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=18885"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/18885\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=18885"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=18885"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=18885"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}