CVE-2025-47384 PUBLISHED

Reachable Assertion in FW

Assigner: qualcomm
Reserved: 06.05.2025 Published: 02.03.2026 Updated: 02.03.2026

Transient DOS when MAC configures config id greater than supported maximum value.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Score: 6.5

Attack Vector	Adjacent Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	None
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	Qualcomm, Inc.
Product	Snapdragon
Versions	Default: unaffected Version 5G Fixed Wireless Access Platform is affected Version FastConnect 6200 is affected Version FastConnect 6700 is affected Version FastConnect 6800 is affected Version FastConnect 6900 is affected Version QCA6391 is affected Version QCA6574A is affected Version QCA6595AU is affected Version QCA6696 is affected Version QCA6698AQ is affected Version QCM5430 is affected Version QCM6490 is affected Version Qualcomm Video Collaboration VC3 Platform is affected Version SDX57M is affected Version SM7325P is affected Version Snapdragon 4 Gen 1 Mobile Platform is affected Version Snapdragon 480 5G Mobile Platform is affected Version Snapdragon 480+ 5G Mobile Platform is affected Version Snapdragon 690 5G Mobile Platform is affected Version Snapdragon 695 5G Mobile Platform is affected Version Snapdragon 778G 5G Mobile Platform is affected Version Snapdragon 778G+ 5G Mobile Platform is affected Version Snapdragon 782G Mobile Platform is affected Version Snapdragon 7c+ Gen 3 Compute is affected Version Snapdragon 865 5G Mobile Platform is affected Version Snapdragon 865+ 5G Mobile Platform is affected Version Snapdragon 870 5G Mobile Platform is affected Version Snapdragon 888 5G Mobile Platform is affected Version Snapdragon 888+ 5G Mobile Platform is affected Version Snapdragon Auto 5G Modem-RF is affected Version Snapdragon X53 5G Modem-RF System is affected Version Snapdragon X55 5G Modem-RF System is affected Version WCD9341 is affected Version WCD9360 is affected Version WCD9370 is affected Version WCD9375 is affected Version WCD9380 is affected Version WCD9385 is affected Version WCN3988 is affected Version WSA8810 is affected Version WSA8815 is affected Version WSA8830 is affected Version WSA8835 is affected

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html

Problem Types

CWE-617 Reachable Assertion CWE