CVE-2025-47378
Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS
CVSS Score
7.1
EPSS Score
0.0%
EPSS Percentile
0th
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
| CWE | CWE-497 |
| Vendor | qualcomm, inc. |
| Product | snapdragon |
| Published | Mar 2, 2026 |
| Last Updated | Mar 3, 2026 |
Stay Ahead of the Next One
Get instant alerts for qualcomm, inc. snapdragon
Be the first to know when new high vulnerabilities affecting qualcomm, inc. snapdragon are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Affected Versions
Qualcomm, Inc. / Snapdragon
Cologne FastConnect 6700 FastConnect 6800 FastConnect 6900 FastConnect 7800 LeMans_AU_LGIT LeMansAU Pandeiro QAM8255P QAMSRV1H QAMSRV1M QCA6391 QCA6595 QCA6595AU QCA6696 QCA6698AQ QCA6797AQ QLN1083BD QLN1086BD QPA1083BD QPA1086BD QXM1083 QXM1086 QXM1093 QXM1094 QXM1095 QXM1096 SA7255P SA7775P SA8255P SA8620P SA8770P SA9000P SAR1165P SAR1250P SAR2130P SAR2230P SD865 5G Snapdragon 8 Elite Gen 5 Snapdragon 865 5G Mobile Platform Snapdragon 865+ 5G Mobile Platform Snapdragon 870 5G Mobile Platform Snapdragon AR1 Gen 1 Platform Snapdragon AR1+ Gen 1 Platform Snapdragon X55 5G Modem-RF System Snapdragon XR2 5G Platform Snapdragon XR2+ Gen 1 Platform SRV1H SRV1M SXR2230P SXR2250P WCD9378C WCD9380 WCD9385 WCD9395 WCN3950 WCN7860 WCN7861 WSA8810 WSA8815 WSA8830 WSA8832 WSA8835 WSA8840 WSA8845 WSA8845H X2000077 X2000086 X2000090 X2000092 X2000094 XG101002 XG101032 XG101039