Weak Configuration in VoWiFi Calls May Compromise Cryptography | Qualcomm
CVE-2025-47383

7.2HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 2 March 2026

What is CVE-2025-47383?

A configuration weakness in Qualcomm's VoWiFi service can result in potential cryptographic vulnerabilities during the initiation of VoWiFi calls from User Equipment (UE). This flaw may expose communications to unauthorized access or tampering, underlining the importance of proper configuration to enhance security measures in wireless communications.

Affected Version(s)

Snapdragon Snapdragon Auto 5G Fixed Wireless Access Platform

Snapdragon Snapdragon Auto 9206 LTE Modem

Snapdragon Snapdragon Auto 9207 LTE Modem

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 2, 2026
Vulnerability Reserved
May 6, 2025

CVE-2025-47383 Data

JSON