CVE-2025-47395

Published Jan 7, 2026

Last updated 4 months ago

CVSS medium 6.5
Wlan

Overview

Description
Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element.
Source
product-security@qualcomm.com
NVD status
Analyzed
Products
wcn7861_firmware

Risk scores

CVSS 3.1

Type
Primary
Base score
6.5
Impact score
3.6
Exploitability score
2.8
Vector string
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
MEDIUM

Weaknesses

product-security@qualcomm.com
CWE-126

Social media

Hype score
Not currently trending

Configurations

Related CVEs

  1. WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02) contains an OS command injection vulnerability in the firewall.cgi binary across five request handlers that apply insufficient input validation. Attackers can inject arbitrary shell commands through vulnerable parameters like websURLFilter, websHostFilter, portForward, singlePortForward, and ipportFilter using subshell syntax or unfiltered parameters, with payloads persisting in NVRAM and re-executing on every subsequent firewall.cgi request.CVE-2026-41926
  2. Memory corruption while processing IOCTL command when device is in power-save state.CVE-2026-25266
  3. Memory corruption while creating a process on the digital signal processor due to allocation failure at the kernel level.CVE-2025-47407
  4. Memory Corruption when copying data from a freed source while executing performance counter deselect operation.CVE-2026-24082
  5. Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified.CVE-2025-47404

References

Sources include official advisories and independent security research.