CVE-2025-47378

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-47378
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.

7.1 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.2

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:cologne_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:cologne:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6800:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:qualcomm:lemans_au_lgit_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:lemans_au_lgit:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:qualcomm:lemansau_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:lemansau:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:qualcomm:pandeiro_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:pandeiro:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:qualcomm:qca6696_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6696:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qca6797aq:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:qualcomm:qln1083bd_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qln1083bd:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:qualcomm:qln1086bd_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qln1086bd:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:qualcomm:qpa1083bd_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qpa1083bd:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:qualcomm:qpa1086bd_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qpa1086bd:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:qualcomm:qxm1083_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qxm1083:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:qualcomm:qxm1086_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qxm1086:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:qualcomm:qxm1093_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qxm1093:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:qualcomm:qxm1094_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qxm1094:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:qualcomm:qxm1095_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qxm1095:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:qualcomm:qxm1096_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:qxm1096:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND
cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND
cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND
cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND
cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND
cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND
cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND
cpe:2.3:o:qualcomm:sar1165p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sar1165p:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND
cpe:2.3:o:qualcomm:sar1250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sar1250p:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND
cpe:2.3:o:qualcomm:sar2130p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sar2130p:-:*:*:*:*:*:*:*

Configuration 37 (hide)

AND
cpe:2.3:o:qualcomm:sar2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sar2230p:-:*:*:*:*:*:*:*

Configuration 38 (hide)

AND
cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*

Configuration 39 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_8_elite_gen_5_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_8_elite_gen_5:-:*:*:*:*:*:*:*

Configuration 40 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_865_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_865_5g_mobile_platform:-:*:*:*:*:*:*:*

Configuration 41 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_865\+_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_865\+_5g_mobile_platform:-:*:*:*:*:*:*:*

Configuration 42 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_870_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_870_5g_mobile_platform:-:*:*:*:*:*:*:*

Configuration 43 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_ar1_gen_1_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_ar1_gen_1_platform:-:*:*:*:*:*:*:*

Configuration 44 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_ar1\+_gen_1_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_ar1\+_gen_1_platform:-:*:*:*:*:*:*:*

Configuration 45 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_x55_5g_modem-rf_system_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_x55_5g_modem-rf_system:-:*:*:*:*:*:*:*

Configuration 46 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_xr2_5g_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_xr2_5g_platform:-:*:*:*:*:*:*:*

Configuration 47 (hide)

AND
cpe:2.3:o:qualcomm:snapdragon_xr2\+_gen_1_platform_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:snapdragon_xr2\+_gen_1_platform:-:*:*:*:*:*:*:*

Configuration 48 (hide)

AND
cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*

Configuration 49 (hide)

AND
cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*

Configuration 50 (hide)

AND
cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*

Configuration 51 (hide)

AND
cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*

Configuration 52 (hide)

AND
cpe:2.3:o:qualcomm:wcd9378c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9378c:-:*:*:*:*:*:*:*

Configuration 53 (hide)

AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 54 (hide)

AND
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 55 (hide)

AND
cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:*

Configuration 56 (hide)

AND
cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 57 (hide)

AND
cpe:2.3:o:qualcomm:wcn7860_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn7860:-:*:*:*:*:*:*:*

Configuration 58 (hide)

AND
cpe:2.3:o:qualcomm:wcn7861_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcn7861:-:*:*:*:*:*:*:*

Configuration 59 (hide)

AND
cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 60 (hide)

AND
cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 61 (hide)

AND
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 62 (hide)

AND
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*

Configuration 63 (hide)

AND
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

Configuration 64 (hide)

AND
cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*

Configuration 65 (hide)

AND
cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*

Configuration 66 (hide)

AND
cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*

Configuration 67 (hide)

AND
cpe:2.3:o:qualcomm:x2000077_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:x2000077:-:*:*:*:*:*:*:*

Configuration 68 (hide)

AND
cpe:2.3:o:qualcomm:x2000086_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:x2000086:-:*:*:*:*:*:*:*

Configuration 69 (hide)

AND
cpe:2.3:o:qualcomm:x2000090_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:x2000090:-:*:*:*:*:*:*:*

Configuration 70 (hide)

AND
cpe:2.3:o:qualcomm:x2000092_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:x2000092:-:*:*:*:*:*:*:*

Configuration 71 (hide)

AND
cpe:2.3:o:qualcomm:x2000094_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:x2000094:-:*:*:*:*:*:*:*

Configuration 72 (hide)

AND
cpe:2.3:o:qualcomm:xg101002_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:xg101002:-:*:*:*:*:*:*:*

Configuration 73 (hide)

AND
cpe:2.3:o:qualcomm:xg101032_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:xg101032:-:*:*:*:*:*:*:*

Configuration 74 (hide)

AND
cpe:2.3:o:qualcomm:xg101039_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:xg101039:-:*:*:*:*:*:*:*
History

No history.

Information

Published : 2026-03-02 17:16

Updated : 2026-03-05 20:38

NVD link : CVE-2025-47378

Mitre link : CVE-2025-47378

CVE.ORG link : CVE-2025-47378

JSON object : View

Products Affected

qualcomm

  • qxm1093_firmware
  • sxr2250p
  • sa8770p
  • sa7255p_firmware
  • qpa1086bd
  • snapdragon_865\+_5g_mobile_platform_firmware
  • wcn3950_firmware
  • wsa8832
  • x2000077_firmware
  • x2000086_firmware
  • wsa8830
  • wsa8810_firmware
  • sa9000p_firmware
  • qln1083bd
  • wcd9380
  • x2000086
  • sar1250p
  • sxr2250p_firmware
  • xg101032_firmware
  • wsa8845_firmware
  • srv1h_firmware
  • wsa8835_firmware
  • xg101002
  • fastconnect_7800
  • qxm1096
  • qxm1083
  • qxm1094_firmware
  • sa8255p_firmware
  • wsa8840_firmware
  • srv1m_firmware
  • qca6696
  • qpa1083bd
  • xg101039_firmware
  • x2000090
  • wcd9385_firmware
  • sar1165p
  • xg101039
  • x2000094_firmware
  • fastconnect_7800_firmware
  • wcn7860
  • wsa8815
  • x2000092
  • sd865_5g_firmware
  • qxm1094
  • xg101002_firmware
  • qxm1096_firmware
  • snapdragon_xr2\+_gen_1_platform_firmware
  • sar2130p_firmware
  • fastconnect_6700
  • snapdragon_8_elite_gen_5
  • qpa1086bd_firmware
  • snapdragon_870_5g_mobile_platform
  • snapdragon_ar1\+_gen_1_platform
  • qxm1093
  • cologne
  • pandeiro_firmware
  • qca6595au_firmware
  • qpa1083bd_firmware
  • fastconnect_6700_firmware
  • qln1086bd
  • fastconnect_6800_firmware
  • qca6391_firmware
  • lemans_au_lgit
  • sa8255p
  • qamsrv1h_firmware
  • qln1086bd_firmware
  • qln1083bd_firmware
  • sar2230p
  • qca6696_firmware
  • qxm1095
  • wcn7861_firmware
  • qamsrv1m_firmware
  • qca6698aq_firmware
  • wcd9395
  • sxr2230p
  • qca6797aq
  • snapdragon_ar1_gen_1_platform
  • qxm1083_firmware
  • lemansau
  • fastconnect_6900_firmware
  • qca6797aq_firmware
  • pandeiro
  • sxr2230p_firmware
  • qamsrv1m
  • wsa8835
  • qca6698aq
  • snapdragon_xr2_5g_platform
  • x2000077
  • wcd9378c
  • srv1h
  • sar2230p_firmware
  • snapdragon_ar1_gen_1_platform_firmware
  • snapdragon_x55_5g_modem-rf_system_firmware
  • qxm1086
  • qam8255p_firmware
  • snapdragon_870_5g_mobile_platform_firmware
  • sar1250p_firmware
  • sa7255p
  • sa8620p
  • sar2130p
  • srv1m
  • wcn7861
  • snapdragon_x55_5g_modem-rf_system
  • sar1165p_firmware
  • wcd9395_firmware
  • wcn7860_firmware
  • x2000094
  • lemans_au_lgit_firmware
  • snapdragon_865\+_5g_mobile_platform
  • wsa8832_firmware
  • qxm1095_firmware
  • x2000092_firmware
  • qamsrv1h
  • snapdragon_ar1\+_gen_1_platform_firmware
  • lemansau_firmware
  • fastconnect_6800
  • sa7775p
  • snapdragon_865_5g_mobile_platform_firmware
  • sa8620p_firmware
  • wsa8815_firmware
  • wsa8845h
  • cologne_firmware
  • wsa8830_firmware
  • wsa8840
  • xg101032
  • sa9000p
  • sa8770p_firmware
  • qca6391
  • qxm1086_firmware
  • snapdragon_xr2_5g_platform_firmware
  • snapdragon_xr2\+_gen_1_platform
  • wcn3950
  • qca6595
  • fastconnect_6900
  • wsa8810
  • qam8255p
  • qca6595au
  • wsa8845h_firmware
  • wsa8845
  • wcd9380_firmware
  • qca6595_firmware
  • x2000090_firmware
  • sa7775p_firmware
  • sd865_5g
  • snapdragon_865_5g_mobile_platform
  • wcd9378c_firmware
  • wcd9385
  • snapdragon_8_elite_gen_5_firmware
CWE
CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere