Primary

Context

Qualcomm HLOS Cryptographic Vulnerability Allowing Access to Bootloader Certificate Chain

Vulnerability

A cryptographic vulnerability has been identified in Qualcomm's High-Level Operating System (HLOS) that allows access to the bootloader's certificate chain. This issue arises from a shared virtual machine reference that improperly facilitates communication between HLOS and the bootloader.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive cryptographic information, specifically the bootloader's certificate chain, which could be misused to manipulate the boot process or verify unauthorized components.

Remediation

Qualcomm has notified customers about this vulnerability and is actively sharing patches. Instructions for applying the patch can be found in the Qualcomm March 2026 Security Bulletin.

Added: Mar 2, 2026, 6:14 PM

Updated: Mar 2, 2026, 10:20 PM

Affected Products

Qualcomm FastConnect 6700

Moderate fix2 remedies

cpe:2.3:h:qualcomm:fastconnect_6700:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm FastConnect 6800

Moderate fix2 remedies

cpe:2.3:h:qualcomm:fastconnect_6800:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm FastConnect 6900

Moderate fix2 remedies

cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm FastConnect 7800

Moderate fix2 remedies

cpe:2.3:h:qualcomm:fastconnect_7800:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm LeMans_AU_LGIT

Moderate fix2 remedies

cpe:2.3:h:qualcomm:sdx57m:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm LeMansAU

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qcs400:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm Pandeiro

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qualcomm:*:*:*:*:*:*:*

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAM8255P

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qam8255p:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAMSRV1M

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qamsrv1h:*:*:*:*:*:*:*, +3 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6391

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qca6391:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6595

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qca6595:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6595AU

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qca6595au:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6696

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qca6696:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6698AQ

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qca6698aq:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6797AQ

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qca6797aq:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QLN1083BD

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qln1035bd:*:*:*:*:*:*:*, +1 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QPA1083BD

Moderate fix2 remedies

cpe:2.3:o:qualcomm:qpa8803_firmware:*:*:*:*:*:*:*

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QPA1086BD

Moderate fix2 remedies

cpe:2.3:h:qualcomm:qpa4361:*:*:*:*:*:*:*, +2 more

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QXM1083

0 remedies

cpe:2.3:h:qualcomm:qxm8083:*:*:*:*:*:*:*

0 remedies

Qualcomm QXM1095

Moderate fix2 remedies

cpe:2.3:o:qualcomm:qxm8083_firmware:*:*:*:*:*:*:*

Moderate fix2 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA6155P

0 remedies

cpe:2.3:h:qualcomm:sa6155p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA7255P

0 remedies

cpe:2.3:h:qualcomm:sa7255p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA7775P

0 remedies

cpe:2.3:h:qualcomm:sa7775p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA8155P

0 remedies

cpe:2.3:h:qualcomm:sa8155p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA8195P

0 remedies

cpe:2.3:h:qualcomm:sa8195p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA8255P

0 remedies

cpe:2.3:h:qualcomm:sa8255p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA8620P

0 remedies

cpe:2.3:h:qualcomm:sa8620p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA8770P

0 remedies

cpe:2.3:h:qualcomm:sa8770p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SA9000P

0 remedies

cpe:2.3:h:qualcomm:sa9000p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SAR1165P

0 remedies

cpe:2.3:h:qualcomm:sa2145p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SD865 5G

0 remedies

cpe:2.3:h:qualcomm:sd865_5g:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon 8 Elite Gen 5

0 remedies

cpe:2.3:h:qualcomm:snapdragon_8_gen_2:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon 865 5G Mobile Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_865_5g_mobile_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon 865+ 5G Mobile Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_865+_5g_mobile_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon 870 5G Mobile Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_870_5g_mobile_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon XR2 5G Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_xr2_5g_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon XR2+ Gen 1 Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_xr2+_gen_1_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SRV1H

0 remedies

cpe:2.3:h:qualcomm:srv1h:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SRV1M

0 remedies

cpe:2.3:h:qualcomm:srv1m:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SW5100

0 remedies

cpe:2.3:h:qualcomm:sw5100:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SW6100

0 remedies

Qualcomm SW6100P

0 remedies

Qualcomm SXR2230P

0 remedies

cpe:2.3:h:qualcomm:sxr2230p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SXR2250P

0 remedies

cpe:2.3:h:qualcomm:sxr2250p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm SXR2330P

0 remedies

cpe:2.3:h:qualcomm:sxr2330p:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCD9378C

0 remedies

cpe:2.3:h:qualcomm:wcd9378:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCD9380

0 remedies

cpe:2.3:h:qualcomm:wcd9380:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCD9385

0 remedies

cpe:2.3:h:qualcomm:wcd9385:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCD9395

0 remedies

cpe:2.3:h:qualcomm:wcd9395:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCN3950

0 remedies

cpe:2.3:o:qualcomm:wcn3950_firmware:*:*:*:*:*:*:*

0 remedies

Qualcomm WCN7860

0 remedies

cpe:2.3:h:qualcomm:wcn7860:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCN7861

0 remedies

cpe:2.3:h:qualcomm:wcn7861:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8810

0 remedies

cpe:2.3:h:qualcomm:wsa8810:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8815

0 remedies

cpe:2.3:h:qualcomm:wsa8815:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8830

0 remedies

cpe:2.3:h:qualcomm:wsa8830:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8832

0 remedies

cpe:2.3:h:qualcomm:wsa8832:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8835

0 remedies

cpe:2.3:h:qualcomm:wsa8835:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8840

0 remedies

cpe:2.3:h:qualcomm:wsa8840:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8845

0 remedies

cpe:2.3:h:qualcomm:wsa8845:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WSA8845H

0 remedies

cpe:2.3:h:qualcomm:wsa8845h:*:*:*:*:*:*:*, +1 more

0 remedies

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.8

exploitability

2.9

remediation

7.7

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.8

exploitability

2.9

remediation

7.7

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.