CVE-2025-47378

HIGH EPSS 0.1%
Published Mar 2, 20264mo ago ยท Modified Mar 5, 20263mo ago
7.1 CVSS 3.1
High
Find Similar
Published Mar 2, 2026 4mo ago
Last Modified Mar 5, 2026 3mo ago

Description

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability None

Threat Intelligence

EPSS Exploit Probability
0.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-497

Affected Products 148

VendorProductVersionRange
qualcommcologne_firmware*any
qualcommcologne*any
qualcommfastconnect_6700_firmware*any
qualcommfastconnect_6700*any
qualcommfastconnect_6800_firmware*any
qualcommfastconnect_6800*any
qualcommfastconnect_6900_firmware*any
qualcommfastconnect_6900*any
qualcommfastconnect_7800_firmware*any
qualcommfastconnect_7800*any
qualcommlemans_au_lgit_firmware*any
qualcommlemans_au_lgit*any
qualcommlemansau_firmware*any
qualcommlemansau*any
qualcommpandeiro_firmware*any
qualcommpandeiro*any
qualcommqam8255p_firmware*any
qualcommqam8255p*any
qualcommqamsrv1h_firmware*any
qualcommqamsrv1h*any
qualcommqamsrv1m_firmware*any
qualcommqamsrv1m*any
qualcommqca6391_firmware*any
qualcommqca6391*any
qualcommqca6595_firmware*any
qualcommqca6595*any
qualcommqca6595au_firmware*any
qualcommqca6595au*any
qualcommqca6696_firmware*any
qualcommqca6696*any
qualcommqca6698aq_firmware*any
qualcommqca6698aq*any
qualcommqca6797aq_firmware*any
qualcommqca6797aq*any
qualcommqln1083bd_firmware*any
qualcommqln1083bd*any
qualcommqln1086bd_firmware*any
qualcommqln1086bd*any
qualcommqpa1083bd_firmware*any
qualcommqpa1083bd*any
qualcommqpa1086bd_firmware*any
qualcommqpa1086bd*any
qualcommqxm1083_firmware*any
qualcommqxm1083*any
qualcommqxm1086_firmware*any
qualcommqxm1086*any
qualcommqxm1093_firmware*any
qualcommqxm1093*any
qualcommqxm1094_firmware*any
qualcommqxm1094*any
qualcommqxm1095_firmware*any
qualcommqxm1095*any
qualcommqxm1096_firmware*any
qualcommqxm1096*any
qualcommsa7255p_firmware*any
qualcommsa7255p*any
qualcommsa7775p_firmware*any
qualcommsa7775p*any
qualcommsa8255p_firmware*any
qualcommsa8255p*any
qualcommsa8620p_firmware*any
qualcommsa8620p*any
qualcommsa8770p_firmware*any
qualcommsa8770p*any
qualcommsa9000p_firmware*any
qualcommsa9000p*any
qualcommsar1165p_firmware*any
qualcommsar1165p*any
qualcommsar1250p_firmware*any
qualcommsar1250p*any
qualcommsar2130p_firmware*any
qualcommsar2130p*any
qualcommsar2230p_firmware*any
qualcommsar2230p*any
qualcommsd865_5g_firmware*any
qualcommsd865_5g*any
qualcommsnapdragon_8_elite_gen_5_firmware*any
qualcommsnapdragon_8_elite_gen_5*any
qualcommsnapdragon_865_5g_mobile_platform_firmware*any
qualcommsnapdragon_865_5g_mobile_platform*any
qualcommsnapdragon_865\+_5g_mobile_platform_firmware*any
qualcommsnapdragon_865\+_5g_mobile_platform*any
qualcommsnapdragon_870_5g_mobile_platform_firmware*any
qualcommsnapdragon_870_5g_mobile_platform*any
qualcommsnapdragon_ar1_gen_1_platform_firmware*any
qualcommsnapdragon_ar1_gen_1_platform*any
qualcommsnapdragon_ar1\+_gen_1_platform_firmware*any
qualcommsnapdragon_ar1\+_gen_1_platform*any
qualcommsnapdragon_x55_5g_modem-rf_system_firmware*any
qualcommsnapdragon_x55_5g_modem-rf_system*any
qualcommsnapdragon_xr2_5g_platform_firmware*any
qualcommsnapdragon_xr2_5g_platform*any
qualcommsnapdragon_xr2\+_gen_1_platform_firmware*any
qualcommsnapdragon_xr2\+_gen_1_platform*any
qualcommsrv1h_firmware*any
qualcommsrv1h*any
qualcommsrv1m_firmware*any
qualcommsrv1m*any
qualcommsxr2230p_firmware*any
qualcommsxr2230p*any
qualcommsxr2250p_firmware*any
qualcommsxr2250p*any
qualcommwcd9378c_firmware*any
qualcommwcd9378c*any
qualcommwcd9380_firmware*any
qualcommwcd9380*any
qualcommwcd9385_firmware*any
qualcommwcd9385*any
qualcommwcd9395_firmware*any
qualcommwcd9395*any
qualcommwcn3950_firmware*any
qualcommwcn3950*any
qualcommwcn7860_firmware*any
qualcommwcn7860*any
qualcommwcn7861_firmware*any
qualcommwcn7861*any
qualcommwsa8810_firmware*any
qualcommwsa8810*any
qualcommwsa8815_firmware*any
qualcommwsa8815*any
qualcommwsa8830_firmware*any
qualcommwsa8830*any
qualcommwsa8832_firmware*any
qualcommwsa8832*any
qualcommwsa8835_firmware*any
qualcommwsa8835*any
qualcommwsa8840_firmware*any
qualcommwsa8840*any
qualcommwsa8845_firmware*any
qualcommwsa8845*any
qualcommwsa8845h_firmware*any
qualcommwsa8845h*any
qualcommx2000077_firmware*any
qualcommx2000077*any
qualcommx2000086_firmware*any
qualcommx2000086*any
qualcommx2000090_firmware*any
qualcommx2000090*any
qualcommx2000092_firmware*any
qualcommx2000092*any
qualcommx2000094_firmware*any
qualcommx2000094*any
qualcommxg101002_firmware*any
qualcommxg101002*any
qualcommxg101032_firmware*any
qualcommxg101032*any
qualcommxg101039_firmware*any
qualcommxg101039*any

References 1

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.