CVE-2025-47384

Q: What is the severity of CVE-2025-47384?

CVE-2025-47384 has a CVSS score of 6.5 (MEDIUM). This vulnerability allows a denial-of-service (DoS) condition in Qualcomm MAC (Media Access Control) components when an attacker configures a MAC configuration ID beyond the supported maximum value. This affects devices using vulnerable Qualcomm chipsets, primarily mobile devices, IoT devices, and networking equipment.

6.5 MEDIUM

Denial of Service

📋 TL;DR

This vulnerability allows a denial-of-service (DoS) condition in Qualcomm MAC (Media Access Control) components when an attacker configures a MAC configuration ID beyond the supported maximum value. This affects devices using vulnerable Qualcomm chipsets, primarily mobile devices, IoT devices, and networking equipment.

💻 Affected Systems

Products:

Qualcomm chipsets with vulnerable MAC implementations

Versions: Specific versions not publicly detailed; refer to Qualcomm March 2026 bulletin

Operating Systems: Android, Linux-based embedded systems, Qualcomm proprietary OS

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices where MAC configuration interface is accessible; exact chipset models not specified in public bulletin.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Permanent device crash requiring hardware reset or reboot, disrupting critical services on affected devices.

🟠

Likely Case

Temporary service disruption (transient DoS) causing device instability or reboot, affecting functionality until system recovers.

🟢

If Mitigated

Minimal impact with proper input validation and boundary checking in place.

🌐 Internet-Facing: MEDIUM - Requires network access to MAC configuration interface, which may be exposed in some deployments.

🏢 Internal Only: HIGH - Internal attackers with network access to management interfaces could exploit this to disrupt services.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires ability to send MAC configuration commands; likely requires some level of network/system access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm March 2026 security bulletin for specific firmware versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm bulletin for affected chipset models. 2. Obtain updated firmware from device manufacturer. 3. Apply firmware update following manufacturer instructions. 4. Reboot device.

🔧 Temporary Workarounds

Restrict MAC configuration access

linux

Limit network access to MAC configuration interfaces to trusted sources only

iptables -A INPUT -p tcp --dport [MAC_CONFIG_PORT] -s [TRUSTED_IP] -j ACCEPT
iptables -A INPUT -p tcp --dport [MAC_CONFIG_PORT] -j DROP

Input validation at application layer

all

Implement boundary checking for MAC configuration IDs before passing to hardware

🧯 If You Can't Patch

Segment network to isolate devices with vulnerable MAC interfaces
Implement strict access controls and monitoring for MAC configuration traffic

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm bulletin; test by attempting to configure MAC with ID beyond documented maximum (caution: may cause DoS)

Check Version:

cat /proc/version | grep -i qualcomm OR check device firmware settings

Verify Fix Applied:

Verify firmware version matches patched version from bulletin; test MAC configuration boundary validation

📡 Detection & Monitoring

Log Indicators:

MAC configuration errors
System crashes/reboots following MAC config changes
Out-of-bounds configuration attempts

Network Indicators:

Unusual MAC configuration traffic
Traffic to MAC management ports from untrusted sources

SIEM Query:

source="network_logs" AND (dest_port="[MAC_CONFIG_PORT]" OR protocol="MAC_CONFIG") AND config_id>MAX_VALUE

📊 Metadata

CVE ID: CVE-2025-47384

CVSS v3 Score: 6.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-617

Published: March 2, 2026

Last Updated: March 5, 2026

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

5g Fixed Wireless Access Platform Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Sdx57m Firmware by Qualcomm

Sm7325p Firmware by Qualcomm

Snapdragon 4 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 480 5g Mobile Platform Firmware by Qualcomm

Snapdragon 480 5g Mobile Platform Firmware by Qualcomm

Snapdragon 690 5g Mobile Platform Firmware by Qualcomm

Snapdragon 695 5g Mobile Platform Firmware by Qualcomm

Snapdragon 778g 5g Mobile Platform Firmware by Qualcomm

Snapdragon 778g 5g Mobile Platform Firmware by Qualcomm

Snapdragon 782g Mobile Platform Firmware by Qualcomm

Snapdragon 7c\+ Gen 3 Compute Firmware by Qualcomm

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

Snapdragon 870 5g Mobile Platform Firmware by Qualcomm

Snapdragon 888 5g Mobile Platform Firmware by Qualcomm

Snapdragon 888 5g Mobile Platform Firmware by Qualcomm

Snapdragon Auto 5g Modem Rf Firmware by Qualcomm

Snapdragon X53 5g Modem Rf System Firmware by Qualcomm

Snapdragon X55 5g Modem Rf System Firmware by Qualcomm

Video Collaboration Vc3 Platform Firmware by Qualcomm

Wcd9341 Firmware by Qualcomm

Wcd9360 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm