Buffer Over-read in Computer Vision

CVE	CVE-2025-47400
State	PUBLISHED
Assigner	qualcomm
Source Priority	CVE Program / NVD first with legacy fallback
Published	2026-04-06 16:16:28 UTC
Updated	2026-04-08 21:05:12 UTC
Description	Cryptographic issue while copying data to a destination buffer without validating its size.

Primary CVSS: v3.1 7.1 HIGH from [email protected]

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS: 0.000050000 probability, percentile 0.002060000 (date 2026-04-13)

Problem Types: CWE-126 | CWE-126 CWE-126 Buffer Over-read

Version	Source	Type	Score	Severity	Vector
3.1	[email protected]	Primary	7.1	HIGH	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N`
3.1	CNA	CVSS	7.1	HIGH	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N`

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Qualcomm	Pandeiro	-	All	All	All
Operating System	Qualcomm	Pandeiro Firmware	-	All	All	All
Hardware	Qualcomm	Snapdragon 8 Elite Gen 5	-	All	All	All
Operating System	Qualcomm	Snapdragon 8 Elite Gen 5 Firmware	-	All	All	All
Hardware	Qualcomm	Sw6100	-	All	All	All
Hardware	Qualcomm	Sw6100p	-	All	All	All
Operating System	Qualcomm	Sw6100p Firmware	-	All	All	All
Operating System	Qualcomm	Sw6100 Firmware	-	All	All	All
Hardware	Qualcomm	Themisto	-	All	All	All
Operating System	Qualcomm	Themisto Firmware	-	All	All	All
Hardware	Qualcomm	Wcd9395	-	All	All	All
Operating System	Qualcomm	Wcd9395 Firmware	-	All	All	All
Hardware	Qualcomm	Wcn7860	-	All	All	All
Operating System	Qualcomm	Wcn7860 Firmware	-	All	All	All
Hardware	Qualcomm	Wcn7861	-	All	All	All
Operating System	Qualcomm	Wcn7861 Firmware	-	All	All	All
Hardware	Qualcomm	Wsa8840	-	All	All	All
Operating System	Qualcomm	Wsa8840 Firmware	-	All	All	All
Hardware	Qualcomm	Wsa8845	-	All	All	All
Hardware	Qualcomm	Wsa8845h	-	All	All	All
Operating System	Qualcomm	Wsa8845h Firmware	-	All	All	All
Operating System	Qualcomm	Wsa8845 Firmware	-	All	All	All

Source	Vendor	Product	Version	Platforms
CNA	Qualcomm Inc.	Snapdragon	affected Pandeiro	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected Snapdragon 8 Elite Gen 5	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected SW6100	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected SW6100P	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected Themisto	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected WCD9395	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected WCN7860	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected WCN7861	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected WSA8840	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected WSA8845	Snapdragon Compute, Snapdragon Wearables
CNA	Qualcomm Inc.	Snapdragon	affected WSA8845H	Snapdragon Compute, Snapdragon Wearables

Reference	Source	Link	Tags
docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin....	[email protected]	docs.qualcomm.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.