Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged
Permalink CVE-2025-47378
7.1 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): None (N)
created 2 months, 4 weeks ago Activity log
  • Created suggestion 2 months, 4 weeks ago
Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.

Affected products

Snapdragon
  • ==Snapdragon 870 5G Mobile Platform
  • ==Snapdragon XR2+ Gen 1 Platform
  • ==WCN3950
  • ==XG101039
  • ==Snapdragon 865 5G Mobile Platform
  • ==SA8255P
  • ==X2000077
  • ==Pandeiro
  • ==SAR2130P
  • ==QXM1095
  • ==QXM1096
  • ==WSA8830
  • ==WCD9385
  • ==WSA8845H
  • ==LeMans_AU_LGIT
  • ==X2000090
  • ==QCA6696
  • ==QPA1083BD
  • ==FastConnect 6800
  • ==SA8770P
  • ==Snapdragon X55 5G Modem-RF System
  • ==SA7775P
  • ==QCA6595
  • ==WSA8840
  • ==WCD9395
  • ==QCA6698AQ
  • ==FastConnect 6900
  • ==QLN1086BD
  • ==WCN7860
  • ==QPA1086BD
  • ==WSA8815
  • ==SRV1H
  • ==WCD9378C
  • ==SXR2250P
  • ==WCN7861
  • ==QXM1086
  • ==QXM1094
  • ==FastConnect 6700
  • ==QLN1083BD
  • ==SA7255P
  • ==SAR1250P
  • ==SD865 5G
  • ==WSA8835
  • ==Snapdragon 865+ 5G Mobile Platform
  • ==X2000094
  • ==QXM1093
  • ==WSA8832
  • ==WSA8845
  • ==Snapdragon XR2 5G Platform
  • ==QCA6797AQ
  • ==XG101032
  • ==Snapdragon 8 Elite Gen 5
  • ==Snapdragon AR1+ Gen 1 Platform
  • ==X2000092
  • ==QCA6595AU
  • ==SXR2230P
  • ==QCA6391
  • ==QXM1083
  • ==XG101002
  • ==X2000086
  • ==Cologne
  • ==LeMansAU
  • ==Snapdragon AR1 Gen 1 Platform
  • ==FastConnect 7800
  • ==WSA8810
  • ==SA9000P
  • ==SAR1165P
  • ==QAMSRV1H
  • ==SAR2230P
  • ==SA8620P
  • ==WCD9380
  • ==SRV1M
  • ==QAM8255P
  • ==QAMSRV1M

Matching in nixpkgs