CVE-2025-47378 - Vulnerability Details - OpenCVE

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation none

Automatable no

Technical Impact total

No data.

No data.

No data.

No data.

References

Link	Providers
https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html

History

Mon, 02 Mar 2026 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 02 Mar 2026 17:00:00 +0000

Type	Values Removed	Values Added
Description		Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
Title		Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS
Weaknesses		CWE-497
References		https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html
Metrics		cvssV3_1 `{'score': 7.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N'}`

MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2026-03-02T16:53:48.873Z

Updated: 2026-03-02T19:39:18.256Z

Reserved: 2025-05-06T08:33:16.266Z

Link: CVE-2025-47378

Vulnrichment

Updated: 2026-03-02T19:39:13.800Z

NVD

Status : Awaiting Analysis

Published: 2026-03-02T17:16:25.453

Modified: 2026-03-02T20:29:29.330

Link: CVE-2025-47378

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-47378", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "state": "PUBLISHED", "assignerShortName": "qualcomm", "dateReserved": "2025-05-06T08:33:16.266Z", "datePublished": "2026-03-02T16:53:48.873Z", "dateUpdated": "2026-03-02T19:39:18.256Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Snapdragon Auto", "Snapdragon CCW", "Snapdragon Compute", "Snapdragon Industrial IOT"], "product": "Snapdragon", "vendor": "Qualcomm, Inc.", "versions": [{"status": "affected", "version": "Cologne"}, {"status": "affected", "version": "FastConnect 6700"}, {"status": "affected", "version": "FastConnect 6800"}, {"status": "affected", "version": "FastConnect 6900"}, {"status": "affected", "version": "FastConnect 7800"}, {"status": "affected", "version": "LeMans_AU_LGIT"}, {"status": "affected", "version": "LeMansAU"}, {"status": "affected", "version": "Pandeiro"}, {"status": "affected", "version": "QAM8255P"}, {"status": "affected", "version": "QAMSRV1H"}, {"status": "affected", "version": "QAMSRV1M"}, {"status": "affected", "version": "QCA6391"}, {"status": "affected", "version": "QCA6595"}, {"status": "affected", "version": "QCA6595AU"}, {"status": "affected", "version": "QCA6696"}, {"status": "affected", "version": "QCA6698AQ"}, {"status": "affected", "version": "QCA6797AQ"}, {"status": "affected", "version": "QLN1083BD"}, {"status": "affected", "version": "QLN1086BD"}, {"status": "affected", "version": "QPA1083BD"}, {"status": "affected", "version": "QPA1086BD"}, {"status": "affected", "version": "QXM1083"}, {"status": "affected", "version": "QXM1086"}, {"status": "affected", "version": "QXM1093"}, {"status": "affected", "version": "QXM1094"}, {"status": "affected", "version": "QXM1095"}, {"status": "affected", "version": "QXM1096"}, {"status": "affected", "version": "SA7255P"}, {"status": "affected", "version": "SA7775P"}, {"status": "affected", "version": "SA8255P"}, {"status": "affected", "version": "SA8620P"}, {"status": "affected", "version": "SA8770P"}, {"status": "affected", "version": "SA9000P"}, {"status": "affected", "version": "SAR1165P"}, {"status": "affected", "version": "SAR1250P"}, {"status": "affected", "version": "SAR2130P"}, {"status": "affected", "version": "SAR2230P"}, {"status": "affected", "version": "SD865 5G"}, {"status": "affected", "version": "Snapdragon 8 Elite Gen 5"}, {"status": "affected", "version": "Snapdragon 865 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 865+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 870 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon AR1 Gen 1 Platform"}, {"status": "affected", "version": "Snapdragon AR1+ Gen 1 Platform"}, {"status": "affected", "version": "Snapdragon X55 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon XR2 5G Platform"}, {"status": "affected", "version": "Snapdragon XR2+ Gen 1 Platform"}, {"status": "affected", "version": "SRV1H"}, {"status": "affected", "version": "SRV1M"}, {"status": "affected", "version": "SXR2230P"}, {"status": "affected", "version": "SXR2250P"}, {"status": "affected", "version": "WCD9378C"}, {"status": "affected", "version": "WCD9380"}, {"status": "affected", "version": "WCD9385"}, {"status": "affected", "version": "WCD9395"}, {"status": "affected", "version": "WCN3950"}, {"status": "affected", "version": "WCN7860"}, {"status": "affected", "version": "WCN7861"}, {"status": "affected", "version": "WSA8810"}, {"status": "affected", "version": "WSA8815"}, {"status": "affected", "version": "WSA8830"}, {"status": "affected", "version": "WSA8832"}, {"status": "affected", "version": "WSA8835"}, {"status": "affected", "version": "WSA8840"}, {"status": "affected", "version": "WSA8845"}, {"status": "affected", "version": "WSA8845H"}, {"status": "affected", "version": "X2000077"}, {"status": "affected", "version": "X2000086"}, {"status": "affected", "version": "X2000090"}, {"status": "affected", "version": "X2000092"}, {"status": "affected", "version": "X2000094"}, {"status": "affected", "version": "XG101002"}, {"status": "affected", "version": "XG101032"}, {"status": "affected", "version": "XG101039"}]}], "descriptions": [{"lang": "en", "value": "Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-497", "description": "CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2026-03-02T16:53:48.873Z"}, "references": [{"url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html"}], "title": "Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-02T19:39:08.430710Z", "id": "CVE-2025-47378", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-02T19:39:18.256Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-47378", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-02T19:39:08.430710Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-02T19:39:13.800Z"}}], "cna": {"title": "Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS", "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Qualcomm, Inc.", "product": "Snapdragon", "versions": [{"status": "affected", "version": "Cologne"}, {"status": "affected", "version": "FastConnect 6700"}, {"status": "affected", "version": "FastConnect 6800"}, {"status": "affected", "version": "FastConnect 6900"}, {"status": "affected", "version": "FastConnect 7800"}, {"status": "affected", "version": "LeMans_AU_LGIT"}, {"status": "affected", "version": "LeMansAU"}, {"status": "affected", "version": "Pandeiro"}, {"status": "affected", "version": "QAM8255P"}, {"status": "affected", "version": "QAMSRV1H"}, {"status": "affected", "version": "QAMSRV1M"}, {"status": "affected", "version": "QCA6391"}, {"status": "affected", "version": "QCA6595"}, {"status": "affected", "version": "QCA6595AU"}, {"status": "affected", "version": "QCA6696"}, {"status": "affected", "version": "QCA6698AQ"}, {"status": "affected", "version": "QCA6797AQ"}, {"status": "affected", "version": "QLN1083BD"}, {"status": "affected", "version": "QLN1086BD"}, {"status": "affected", "version": "QPA1083BD"}, {"status": "affected", "version": "QPA1086BD"}, {"status": "affected", "version": "QXM1083"}, {"status": "affected", "version": "QXM1086"}, {"status": "affected", "version": "QXM1093"}, {"status": "affected", "version": "QXM1094"}, {"status": "affected", "version": "QXM1095"}, {"status": "affected", "version": "QXM1096"}, {"status": "affected", "version": "SA7255P"}, {"status": "affected", "version": "SA7775P"}, {"status": "affected", "version": "SA8255P"}, {"status": "affected", "version": "SA8620P"}, {"status": "affected", "version": "SA8770P"}, {"status": "affected", "version": "SA9000P"}, {"status": "affected", "version": "SAR1165P"}, {"status": "affected", "version": "SAR1250P"}, {"status": "affected", "version": "SAR2130P"}, {"status": "affected", "version": "SAR2230P"}, {"status": "affected", "version": "SD865 5G"}, {"status": "affected", "version": "Snapdragon 8 Elite Gen 5"}, {"status": "affected", "version": "Snapdragon 865 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 865+ 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon 870 5G Mobile Platform"}, {"status": "affected", "version": "Snapdragon AR1 Gen 1 Platform"}, {"status": "affected", "version": "Snapdragon AR1+ Gen 1 Platform"}, {"status": "affected", "version": "Snapdragon X55 5G Modem-RF System"}, {"status": "affected", "version": "Snapdragon XR2 5G Platform"}, {"status": "affected", "version": "Snapdragon XR2+ Gen 1 Platform"}, {"status": "affected", "version": "SRV1H"}, {"status": "affected", "version": "SRV1M"}, {"status": "affected", "version": "SXR2230P"}, {"status": "affected", "version": "SXR2250P"}, {"status": "affected", "version": "WCD9378C"}, {"status": "affected", "version": "WCD9380"}, {"status": "affected", "version": "WCD9385"}, {"status": "affected", "version": "WCD9395"}, {"status": "affected", "version": "WCN3950"}, {"status": "affected", "version": "WCN7860"}, {"status": "affected", "version": "WCN7861"}, {"status": "affected", "version": "WSA8810"}, {"status": "affected", "version": "WSA8815"}, {"status": "affected", "version": "WSA8830"}, {"status": "affected", "version": "WSA8832"}, {"status": "affected", "version": "WSA8835"}, {"status": "affected", "version": "WSA8840"}, {"status": "affected", "version": "WSA8845"}, {"status": "affected", "version": "WSA8845H"}, {"status": "affected", "version": "X2000077"}, {"status": "affected", "version": "X2000086"}, {"status": "affected", "version": "X2000090"}, {"status": "affected", "version": "X2000092"}, {"status": "affected", "version": "X2000094"}, {"status": "affected", "version": "XG101002"}, {"status": "affected", "version": "XG101032"}, {"status": "affected", "version": "XG101039"}], "platforms": ["Snapdragon Auto", "Snapdragon CCW", "Snapdragon Compute", "Snapdragon Industrial IOT"], "defaultStatus": "unaffected"}], "references": [{"url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html"}], "descriptions": [{"lang": "en", "value": "Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-497", "description": "CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere"}]}], "providerMetadata": {"orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm", "dateUpdated": "2026-03-02T16:53:48.873Z"}}}, "cveMetadata": {"cveId": "CVE-2025-47378", "state": "PUBLISHED", "dateUpdated": "2026-03-02T19:39:18.256Z", "dateReserved": "2025-05-06T08:33:16.266Z", "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "datePublished": "2026-03-02T16:53:48.873Z", "assignerShortName": "qualcomm"}, "dataVersion": "5.2"}