Primary

Context

Qualcomm SMSS Information Disclosure Vulnerability via QFPROM Fuse Operations

Vulnerability

A vulnerability has been identified in the Qualcomm SMSS (Secure Memory Storage Service) that allows for information disclosure. This issue arises when a user-level driver conducts read or write operations on Fuse regions using QFPROM, potentially exposing sensitive information.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure by allowing user-level drivers to read from or write to Fuse regions, which may contain sensitive data.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. For information on the patching status of released devices, contact the device manufacturer.

Added: Nov 4, 2025, 4:44 AM

Updated: Nov 4, 2025, 4:44 AM

Affected Products

Qualcomm QAM8255P

0 remedies

cpe:2.3:h:qualcomm:qam8255p:*:*:*:*:*:*:*, +1 more

0 remedies

>= QAM8255P, <= QAM8255P

Qualcomm QAM8620P

0 remedies

cpe:2.3:h:qualcomm:qam8620p:*:*:*:*:*:*:*, +1 more

0 remedies

>= QAM8620P, <= QAM8620P

Qualcomm QAM8650P

0 remedies

cpe:2.3:h:qualcomm:qam8650p:*:*:*:*:*:*:*, +1 more

0 remedies

>= QAM8650P, <= QAM8650P

Qualcomm QAM8775P

0 remedies

cpe:2.3:h:qualcomm:qam8775p:*:*:*:*:*:*:*, +1 more

0 remedies

>= QAM8775P, <= QAM8775P

Qualcomm QAMSRV1H

0 remedies

cpe:2.3:h:qualcomm:qamsrv1h:*:*:*:*:*:*:*, +1 more

0 remedies

>= QAMSRV1H, <= QAMSRV1H

Qualcomm QAMSRV1M

0 remedies

cpe:2.3:h:qualcomm:qamsrv1m:*:*:*:*:*:*:*, +1 more

0 remedies

>= QAMSRV1M, <= QAMSRV1M

Qualcomm QCA6595

0 remedies

cpe:2.3:h:qualcomm:qca6595:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6595, <= QCA6595

Qualcomm QCA6595AU

0 remedies

cpe:2.3:h:qualcomm:qca6595au:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6595AU, <= QCA6595AU

Qualcomm QCA6678AQ

0 remedies

cpe:2.3:h:qualcomm:qca6678aq:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6678AQ, <= QCA6678AQ

Qualcomm QCA6696

0 remedies

cpe:2.3:h:qualcomm:qca6688aq:*:*:*:*:*:*:*, +3 more

0 remedies

>= QCA6688AQ, <= QCA6688AQ
>= QCA6696, <= QCA6696

Qualcomm QCA6698AQ

0 remedies

cpe:2.3:h:qualcomm:qca6698aq:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6698AQ, <= QCA6698AQ

Qualcomm QCA6797AQ

0 remedies

cpe:2.3:h:qualcomm:qca6797aq:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6797AQ, <= QCA6797AQ

Qualcomm QCS9100

0 remedies

cpe:2.3:h:qualcomm:qcs9100:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCS9100, <= QCS9100

Qualcomm SA7255P

0 remedies

cpe:2.3:h:qualcomm:sa7255p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA7255P, <= SA7255P

Qualcomm SA7775P

0 remedies

cpe:2.3:h:qualcomm:sa7775p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA7775P, <= SA7775P

Qualcomm SA8255P

0 remedies

cpe:2.3:h:qualcomm:sa8255p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA8255P, <= SA8255P

Qualcomm SA8620P

0 remedies

cpe:2.3:h:qualcomm:sa8620p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA8620P, <= SA8620P

Qualcomm SA8650P

0 remedies

cpe:2.3:h:qualcomm:sa8650p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA8650P, <= SA8650P

Qualcomm SA8770P

0 remedies

cpe:2.3:h:qualcomm:sa8770p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA8770P, <= SA8770P

Qualcomm SA8775P

0 remedies

cpe:2.3:h:qualcomm:sa8775p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA8775P, <= SA8775P

Qualcomm SA9000P

0 remedies

cpe:2.3:h:qualcomm:sa9000p:*:*:*:*:*:*:*, +1 more

0 remedies

>= SA9000P, <= SA9000P

Qualcomm SRV1H

0 remedies

cpe:2.3:h:qualcomm:srv1h:*:*:*:*:*:*:*, +1 more

0 remedies

>= SRV1H, <= SRV1H

Qualcomm SRV1L

0 remedies

cpe:2.3:h:qualcomm:srv1l:*:*:*:*:*:*:*, +1 more

0 remedies

>= SRV1L, <= SRV1L

Qualcomm SRV1M

0 remedies

cpe:2.3:h:qualcomm:srv1m:*:*:*:*:*:*:*, +1 more

0 remedies

>= SRV1M, <= SRV1M

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

3.5

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm SMSS Information Disclosure Vulnerability via QFPROM Fuse Operations

Vulnerability

Impact

Remediation

Affected Products

Qualcomm QAM8255P

Qualcomm QAM8620P

Qualcomm QAM8650P

Qualcomm QAM8775P

Qualcomm QAMSRV1H

Qualcomm QAMSRV1M

Qualcomm QCA6595

Qualcomm QCA6595AU

Qualcomm QCA6678AQ

Qualcomm QCA6696

Qualcomm QCA6698AQ

Qualcomm QCA6797AQ

Qualcomm QCS9100

Qualcomm SA7255P

Qualcomm SA7775P

Qualcomm SA8255P

Qualcomm SA8620P

Qualcomm SA8650P

Qualcomm SA8770P

Qualcomm SA8775P

Qualcomm SA9000P

Qualcomm SRV1H

Qualcomm SRV1L

Qualcomm SRV1M

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating