CVE-2025-47370
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-11-04
Last updated on: 2025-11-05
Assigner: Qualcomm, Inc.
Description
Description
Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| qualcomm | ar8035_firmware | * |
| qualcomm | ar8035 | * |
| qualcomm | csrb31024_firmware | * |
| qualcomm | csrb31024 | * |
| qualcomm | fastconnect_6700_firmware | * |
| qualcomm | fastconnect_6700 | * |
| qualcomm | fastconnect_6900_firmware | * |
| qualcomm | fastconnect_6900 | * |
| qualcomm | fastconnect_7800_firmware | * |
| qualcomm | fastconnect_7800 | * |
| qualcomm | sm8550p_firmware | * |
| qualcomm | sm8550p | * |
| qualcomm | sm8635_firmware | * |
| qualcomm | sm8635 | * |
| qualcomm | sm8635p_firmware | * |
| qualcomm | sm8635p | * |
| qualcomm | sm8650q_firmware | * |
| qualcomm | sm8650q | * |
| qualcomm | sm8735_firmware | * |
| qualcomm | sm8735 | * |
| qualcomm | sm8750_firmware | * |
| qualcomm | sm8750 | * |
| qualcomm | sm8750p_firmware | * |
| qualcomm | sm8750p | * |
| qualcomm | snapdragon_778g_5g_mobile_platform_firmware | * |
| qualcomm | snapdragon_778g_5g_mobile_platform | * |
| qualcomm | snapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)_firmware | * |
| qualcomm | snapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\) | * |
| qualcomm | snapdragon_782g_mobile_platform_\(sm7325-af\)_firmware | * |
| qualcomm | snapdragon_782g_mobile_platform_\(sm7325-af\) | * |
| qualcomm | snapdragon_7c\+_gen_3_compute_firmware | * |
| qualcomm | snapdragon_7c\+_gen_3_compute | * |
| qualcomm | snapdragon_8_gen_2_mobile_platform_firmware | * |
| qualcomm | snapdragon_8_gen_2_mobile_platform | * |
| qualcomm | snapdragon_8_gen_3_mobile_platform_firmware | * |
| qualcomm | snapdragon_8_gen_3_mobile_platform | * |
| qualcomm | snapdragon_8\+_gen_2_mobile_platform_firmware | * |
| qualcomm | snapdragon_8\+_gen_2_mobile_platform | * |
| qualcomm | snapdragon_ar1_gen_1_platform_firmware | * |
| qualcomm | snapdragon_ar1_gen_1_platform | * |
| qualcomm | snapdragon_ar1_gen_1_platform_\luna1\_firmware | * |
| qualcomm | snapdragon_ar1_gen_1_platform_\luna1\ | * |
| qualcomm | snapdragon_ar2_gen_1_platform_firmware | * |
| qualcomm | snapdragon_ar2_gen_1_platform | * |
| qualcomm | snapdragon_auto_5g_modem-rf_firmware | * |
| qualcomm | snapdragon_auto_5g_modem-rf | * |
| qualcomm | snapdragon_auto_5g_modem-rf_gen_2_firmware | * |
| qualcomm | snapdragon_auto_5g_modem-rf_gen_2 | * |
| qualcomm | snapdragon_x72_5g_modem-rf_system_firmware | * |
| qualcomm | snapdragon_x72_5g_modem-rf_system | * |
| qualcomm | snapdragon_x75_5g_modem-rf_system_firmware | * |
| qualcomm | snapdragon_x75_5g_modem-rf_system | * |
| qualcomm | snapdragon_auto_4g_modem_firmware | * |
| qualcomm | snapdragon_auto_4g_modem | * |
| qualcomm | srv1h_firmware | * |
| qualcomm | srv1h | * |
| qualcomm | srv1m_firmware | * |
| qualcomm | srv1m | * |
| qualcomm | ssg2115p_firmware | * |
| qualcomm | ssg2115p | * |
| qualcomm | ssg2125p_firmware | * |
| qualcomm | ssg2125p | * |
| qualcomm | sxr1230p_firmware | * |
| qualcomm | sxr1230p | * |
| qualcomm | sxr2230p_firmware | * |
| qualcomm | sxr2230p | * |
| qualcomm | sxr2250p_firmware | * |
| qualcomm | sxr2250p | * |
| qualcomm | sxr2330p_firmware | * |
| qualcomm | sxr2330p | * |
| qualcomm | sxr2350p_firmware | * |
| qualcomm | sxr2350p | * |
| qualcomm | wcd9340_firmware | * |
| qualcomm | wcd9340 | * |
| qualcomm | wcd9360_firmware | * |
| qualcomm | wcd9360 | * |
| qualcomm | wcd9370_firmware | * |
| qualcomm | wcd9370 | * |
| qualcomm | wcd9375_firmware | * |
| qualcomm | wcd9375 | * |
| qualcomm | wcd9378_firmware | * |
| qualcomm | wcd9378 | * |
| qualcomm | wcd9380_firmware | * |
| qualcomm | wcd9380 | * |
| qualcomm | wcd9385_firmware | * |
| qualcomm | wcd9385 | * |
| qualcomm | wcd9390_firmware | * |
| qualcomm | wcd9390 | * |
| qualcomm | wcd9395_firmware | * |
| qualcomm | wcd9395 | * |
| qualcomm | qam8255p_firmware | * |
| qualcomm | qam8255p | * |
| qualcomm | qam8295p_firmware | * |
| qualcomm | qam8295p | * |
| qualcomm | qam8650p_firmware | * |
| qualcomm | qam8650p | * |
| qualcomm | qam8775p_firmware | * |
| qualcomm | qam8775p | * |
| qualcomm | qamsrv1h_firmware | * |
| qualcomm | qamsrv1h | * |
| qualcomm | qamsrv1m_firmware | * |
| qualcomm | qamsrv1m | * |
| qualcomm | qca6391_firmware | * |
| qualcomm | qca6391 | * |
| qualcomm | qca6554a_firmware | * |
| qualcomm | qca6554a | * |
| qualcomm | qca6564au_firmware | * |
| qualcomm | qca6564au | * |
| qualcomm | qca6574_firmware | * |
| qualcomm | qca6574 | * |
| qualcomm | qca6574a_firmware | * |
| qualcomm | qca6574a | * |
| qualcomm | qca6574au_firmware | * |
| qualcomm | qca6574au | * |
| qualcomm | qca6584au_firmware | * |
| qualcomm | qca6584au | * |
| qualcomm | qca6595_firmware | * |
| qualcomm | qca6595 | * |
| qualcomm | qca6595au_firmware | * |
| qualcomm | qca6595au | * |
| qualcomm | qca6678aq_firmware | * |
| qualcomm | qca6678aq | * |
| qualcomm | qca6688aq_firmware | * |
| qualcomm | qca6688aq | * |
| qualcomm | qca6696_firmware | * |
| qualcomm | qca6696 | * |
| qualcomm | qca6698aq_firmware | * |
| qualcomm | qca6698aq | * |
| qualcomm | qca6777aq_firmware | * |
| qualcomm | qca6777aq | * |
| qualcomm | qca6787aq_firmware | * |
| qualcomm | qca6787aq | * |
| qualcomm | qca6797aq_firmware | * |
| qualcomm | qca6797aq | * |
| qualcomm | qca8081_firmware | * |
| qualcomm | qca8081 | * |
| qualcomm | qca8337_firmware | * |
| qualcomm | qca8337 | * |
| qualcomm | qca8695au_firmware | * |
| qualcomm | qca8695au | * |
| qualcomm | qcc2073_firmware | * |
| qualcomm | qcc2073 | * |
| qualcomm | qcc2076_firmware | * |
| qualcomm | qcc2076 | * |
| qualcomm | qcc5161_firmware | * |
| qualcomm | qcc5161 | * |
| qualcomm | qcc710_firmware | * |
| qualcomm | qcc710 | * |
| qualcomm | qcc7225_firmware | * |
| qualcomm | qcc7225 | * |
| qualcomm | qcc7226_firmware | * |
| qualcomm | qcc7226 | * |
| qualcomm | qcc7228_firmware | * |
| qualcomm | qcc7228 | * |
| qualcomm | qcm4490_firmware | * |
| qualcomm | qcm4490 | * |
| qualcomm | qcm5430_firmware | * |
| qualcomm | qcm5430 | * |
| qualcomm | qcm6490_firmware | * |
| qualcomm | qcm6490 | * |
| qualcomm | qcn6224_firmware | * |
| qualcomm | qcn6224 | * |
| qualcomm | qcn6274_firmware | * |
| qualcomm | qcn6274 | * |
| qualcomm | qcn7605_firmware | * |
| qualcomm | qcn7605 | * |
| qualcomm | qcn7606_firmware | * |
| qualcomm | qcn7606 | * |
| qualcomm | qcn9011_firmware | * |
| qualcomm | qcn9011 | * |
| qualcomm | qcn9012_firmware | * |
| qualcomm | qcn9012 | * |
| qualcomm | qcs4490_firmware | * |
| qualcomm | qcs4490 | * |
| qualcomm | qcs5430_firmware | * |
| qualcomm | qcs5430 | * |
| qualcomm | qcs615_firmware | * |
| qualcomm | qcs615 | * |
| qualcomm | qcs6490_firmware | * |
| qualcomm | qcs6490 | * |
| qualcomm | qcs8550_firmware | * |
| qualcomm | qcs8550 | * |
| qualcomm | qcs9100_firmware | * |
| qualcomm | qcs9100 | * |
| qualcomm | qfw7114_firmware | * |
| qualcomm | qfw7114 | * |
| qualcomm | qfw7124_firmware | * |
| qualcomm | qfw7124 | * |
| qualcomm | qmp1000_firmware | * |
| qualcomm | qmp1000 | * |
| qualcomm | video_collaboration_vc3_platform_firmware | * |
| qualcomm | video_collaboration_vc3_platform | * |
| qualcomm | s3_gen_2_sound_platform_firmware | * |
| qualcomm | s3_gen_2_sound_platform | * |
| qualcomm | s3_sound_platform_firmware | * |
| qualcomm | s3_sound_platform | * |
| qualcomm | s5_gen_2_sound_platform_firmware | * |
| qualcomm | s5_gen_2_sound_platform | * |
| qualcomm | s5_sound_platform_firmware | * |
| qualcomm | s5_sound_platform | * |
| qualcomm | sa4150p_firmware | * |
| qualcomm | sa4150p | * |
| qualcomm | sa4155p_firmware | * |
| qualcomm | sa4155p | * |
| qualcomm | sa6145p_firmware | * |
| qualcomm | sa6145p | * |
| qualcomm | sa6150p_firmware | * |
| qualcomm | sa6150p | * |
| qualcomm | sa6155_firmware | * |
| qualcomm | sa6155 | * |
| qualcomm | sa6155p_firmware | * |
| qualcomm | sa6155p | * |
| qualcomm | sa7255p_firmware | * |
| qualcomm | sa7255p | * |
| qualcomm | sa7775p_firmware | * |
| qualcomm | sa7775p | * |
| qualcomm | sa8145p_firmware | * |
| qualcomm | sa8145p | * |
| qualcomm | sa8150p_firmware | * |
| qualcomm | sa8150p | * |
| qualcomm | sa8155_firmware | * |
| qualcomm | sa8155 | * |
| qualcomm | sa8155p_firmware | * |
| qualcomm | sa8155p | * |
| qualcomm | sa8195p_firmware | * |
| qualcomm | sa8195p | * |
| qualcomm | sa8255p_firmware | * |
| qualcomm | sa8255p | * |
| qualcomm | sa8295p_firmware | * |
| qualcomm | sa8295p | * |
| qualcomm | sa8620p_firmware | * |
| qualcomm | sa8620p | * |
| qualcomm | sa8650p_firmware | * |
| qualcomm | sa8650p | * |
| qualcomm | sa8770p_firmware | * |
| qualcomm | sa8770p | * |
| qualcomm | sa8775p_firmware | * |
| qualcomm | sa8775p | * |
| qualcomm | sa9000p_firmware | * |
| qualcomm | sa9000p | * |
| qualcomm | sc8380xp_firmware | * |
| qualcomm | sc8380xp | * |
| qualcomm | sdx55_firmware | * |
| qualcomm | sdx55 | * |
| qualcomm | sm7325p_firmware | * |
| qualcomm | sm7325p | * |
| qualcomm | sm7675_firmware | * |
| qualcomm | sm7675 | * |
| qualcomm | sm7675p_firmware | * |
| qualcomm | sm7675p | * |
| qualcomm | wcn3950_firmware | * |
| qualcomm | wcn3950 | * |
| qualcomm | wcn6755_firmware | * |
| qualcomm | wcn6755 | * |
| qualcomm | wcn7750_firmware | * |
| qualcomm | wcn7750 | * |
| qualcomm | wsa8810_firmware | * |
| qualcomm | wsa8810 | * |
| qualcomm | wsa8815_firmware | * |
| qualcomm | wsa8815 | * |
| qualcomm | wsa8830_firmware | * |
| qualcomm | wsa8830 | * |
| qualcomm | wsa8832_firmware | * |
| qualcomm | wsa8832 | * |
| qualcomm | wsa8835_firmware | * |
| qualcomm | wsa8835 | * |
| qualcomm | wsa8840_firmware | * |
| qualcomm | wsa8840 | * |
| qualcomm | wsa8845_firmware | * |
| qualcomm | wsa8845 | * |
| qualcomm | wsa8845h_firmware | * |
| qualcomm | wsa8845h | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-617 | The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a transient denial of service (DoS) that occurs when a remote device sends an invalid connection request during a Bluetooth (BT) connectable Low Energy (LE) scan. This causes the affected device to temporarily lose service.
How can this vulnerability impact me? :
The impact of this vulnerability is a temporary denial of service, meaning the affected device may become unresponsive or unable to connect via Bluetooth LE during the attack, potentially disrupting normal operations that rely on Bluetooth connectivity.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70