Primary

Context

Qualcomm Products Information Disclosure Vulnerability in HLOS

Vulnerability

A vulnerability has been identified in various chipsets used in Qualcomm products, allowing for information disclosure by exposing internal Trusted Application (TA) communication APIs to the High-Level Operating System (HLOS). This vulnerability could lead to unauthorized access to sensitive system information.

Impact

Exploitation of this vulnerability could result in unauthorized information disclosure, potentially allowing access to sensitive system data or internal communications.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and recommended that they deploy patches. Instructions for applying the patch can be found in the Qualcomm December 2025 Security Bulletin.

Added: Dec 18, 2025, 7:25 AM

Updated: Dec 18, 2025, 7:25 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

0.0

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

0.0

relevance

1.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Products Information Disclosure Vulnerability in HLOS

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating