Information Disclosure Vulnerability in Qualcomm Products
CVE-2025-47369

5.5MEDIUM

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 January 2026

What is CVE-2025-47369?

An information disclosure vulnerability exists in Qualcomm products that arises from the exposure of a weakly hashed session ID. When a userland code makes an IOCTL call to obtain a session ID, the system may return a value that can potentially be exploited. This flaw could allow unauthorized access to sensitive information, posing a risk to user data integrity and privacy. Users and administrators should be aware of this issue and take necessary precautions to mitigate potential threats.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Snapdragon Snapdragon Auto AR8035

Snapdragon Snapdragon Auto CSRA6620

Snapdragon Snapdragon Auto CSRA6640

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 6, 2026
Vulnerability Reserved
May 6, 2025

JSON

Qualcomm