Denial of Service Vulnerability in Bluetooth Connectable Scanning by Qualcomm
CVE-2025-47370

6.5MEDIUM

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-47370?

A vulnerability exists in Qualcomm's Bluetooth technology that can lead to a transient denial of service. This issue arises when a remote device transmits an invalid connection request during a Bluetooth Low Energy (LE) scanning operation. When exploited, this can disrupt the normal operation of affected devices, causing temporary connectivity issues and impacting the user experience. Users of impacted Qualcomm Bluetooth chipsets should be aware of this vulnerability to better manage their device security.

Affected Version(s)

Snapdragon Snapdragon Auto AR8035

Snapdragon Snapdragon Auto CSRB31024

Snapdragon Snapdragon Auto FastConnect 6700

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
May 6, 2025

JSON