CVE-2025-47371

Q: What is the severity of CVE-2025-47371?

CVE-2025-47371 has a CVSS score of 6.5 (MEDIUM). This vulnerability allows a denial-of-service (DoS) attack against LTE user equipment (UE) when it receives an RLC packet with an invalid transport block (TB). Mobile devices using affected Qualcomm chipsets are vulnerable to temporary service disruption.

6.5 MEDIUM

Denial of Service

📋 TL;DR

This vulnerability allows a denial-of-service (DoS) attack against LTE user equipment (UE) when it receives an RLC packet with an invalid transport block (TB). Mobile devices using affected Qualcomm chipsets are vulnerable to temporary service disruption.

💻 Affected Systems

Products:

Qualcomm LTE modems/chipsets

Versions: Specific versions not publicly detailed; refer to Qualcomm advisory

Operating Systems: Android, other mobile OS using affected chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with vulnerable Qualcomm LTE implementations; exact models require checking Qualcomm's bulletin.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could cause persistent service disruption to mobile devices, preventing voice/data connectivity until device restart or network reattachment.

🟠

Likely Case

Temporary service interruption requiring device reboot or network reconnection to restore functionality.

🟢

If Mitigated

Minimal impact with proper network filtering and updated firmware preventing malicious packets from reaching devices.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires sending specially crafted LTE RLC packets to target devices, typically requiring proximity or network access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm March 2026 security bulletin

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html

Restart Required: Yes

Instructions:

1. Check device manufacturer for firmware updates. 2. Apply Qualcomm-provided patches via OEM updates. 3. Reboot device after update.

🔧 Temporary Workarounds

Network filtering

all

Implement network-level filtering to block malicious LTE RLC packets

🧯 If You Can't Patch

Restrict physical access to prevent local RF-based attacks
Monitor for unusual service disruptions and investigate potential attacks

🔍 How to Verify

Check if Vulnerable:

Check device chipset version against Qualcomm advisory; no simple command available

Check Version:

Device-specific (e.g., Android: Settings > About phone > Baseband version)

Verify Fix Applied:

Verify firmware version matches patched version from manufacturer

📡 Detection & Monitoring

Log Indicators:

Unexpected LTE RLC protocol errors
Frequent radio link failures

Network Indicators:

Unusual LTE control plane traffic patterns

SIEM Query:

Search for LTE RLC protocol anomalies or DoS events in mobile network logs

📊 Metadata

CVE ID: CVE-2025-47371

CVSS v3 Score: 6.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-617

Published: March 2, 2026

Last Updated: March 4, 2026

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

5g Fixed Wireless Access Platform Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Csra6620 Firmware by Qualcomm

Csra6640 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Fwa Gen 3 Ultra Firmware by Qualcomm

G1 Gen 1 Firmware by Qualcomm

Milos Firmware by Qualcomm

Netrani Firmware by Qualcomm

Orne Firmware by Qualcomm

Palawan25 Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6698au Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcm2290 Firmware by Qualcomm

Qcm4325 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcn6024 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcs2290 Firmware by Qualcomm

Qcs4290 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm

Qfw7124 Firmware by Qualcomm

Qmp1000 Firmware by Qualcomm

Robotics Rb2 Platform Firmware by Qualcomm

Sd662 Firmware by Qualcomm

Sdx61 Firmware by Qualcomm

Sdx71m Firmware by Qualcomm

Sm6225p Firmware by Qualcomm

Sm6250 Firmware by Qualcomm

Sm6650p Firmware by Qualcomm

Sm7435 Firmware by Qualcomm

Sm7550 Firmware by Qualcomm

Sm7550p Firmware by Qualcomm

Sm7635p Firmware by Qualcomm

Sm7675 Firmware by Qualcomm

Sm7675p Firmware by Qualcomm

Sm8475p Firmware by Qualcomm

Sm8550p Firmware by Qualcomm

Sm8635 Firmware by Qualcomm

Sm8635p Firmware by Qualcomm

Sm8650q Firmware by Qualcomm

Sm8750p Firmware by Qualcomm

Snapdragon 4 Gen 2 Mobile Platform Firmware by Qualcomm

Snapdragon 460 Mobile Platform Firmware by Qualcomm

Snapdragon 6 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 6 Gen 3 Mobile Platform Firmware by Qualcomm

Snapdragon 6 Gen 4 Mobile Platform Firmware by Qualcomm

Snapdragon 662 Mobile Platform Firmware by Qualcomm

Snapdragon 680 4g Mobile Platform Firmware by Qualcomm

Snapdragon 685 4g Mobile Platform Firmware by Qualcomm

Snapdragon 690 5g Mobile Platform Firmware by Qualcomm

Snapdragon 7 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 7\+ Gen 2 Mobile Platform Firmware by Qualcomm

Snapdragon 7c Compute Platform Firmware by Qualcomm