Primary

Context

Qualcomm HLOS Cryptographic Vulnerability Triggering Outdated Trusted Zone Code

Vulnerability

A cryptographic vulnerability has been identified in Qualcomm's High-Level Operating System (HLOS) chipsets. This issue arises when HLOS provides incorrect input, activating a Trusted Zone that contains outdated code. The vulnerability could potentially be exploited, leading to significant security implications.

Impact

Exploitation of this vulnerability creates a cryptographic issue that could be leveraged to manipulate or interfere with secure operations, particularly those managed by the Trusted Zone.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. For information on the patching status of released devices, contact the device manufacturer.

Added: Feb 2, 2026, 5:02 PM

Updated: Feb 2, 2026, 5:02 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

6.7

exploitability

3.3

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

6.7

exploitability

3.3

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm HLOS Cryptographic Vulnerability Triggering Outdated Trusted Zone Code

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating