Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.1
Apple iOS Boot Loader Can Access Encrypted Certificates
CVE-2025-47378
Summary
A flaw in Apple's iOS operating system allows the boot loader to access encrypted certificates, which could potentially be used to compromise device security. This issue affects all versions of iOS and can be mitigated by updating to the latest version of the operating system.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| qualcomm | cologne_firmware | All versions | – |
| qualcomm | fastconnect_6700_firmware | All versions | – |
| qualcomm | fastconnect_6800_firmware | All versions | – |
| qualcomm | fastconnect_6900_firmware | All versions | – |
| qualcomm | fastconnect_7800_firmware | All versions | – |
| qualcomm | lemans_au_lgit_firmware | All versions | – |
| qualcomm | lemansau_firmware | All versions | – |
| qualcomm | pandeiro_firmware | All versions | – |
| qualcomm | qam8255p_firmware | All versions | – |
| qualcomm | qamsrv1h_firmware | All versions | – |
| qualcomm | qamsrv1m_firmware | All versions | – |
| qualcomm | qca6391_firmware | All versions | – |
| qualcomm | qca6595_firmware | All versions | – |
| qualcomm | qca6595au_firmware | All versions | – |
| qualcomm | qca6696_firmware | All versions | – |
| qualcomm | qca6698aq_firmware | All versions | – |
| qualcomm | qca6797aq_firmware | All versions | – |
| qualcomm | qln1083bd_firmware | All versions | – |
| qualcomm | qln1086bd_firmware | All versions | – |
| qualcomm | qpa1083bd_firmware | All versions | – |
| qualcomm | qpa1086bd_firmware | All versions | – |
| qualcomm | qxm1083_firmware | All versions | – |
| qualcomm | qxm1086_firmware | All versions | – |
| qualcomm | qxm1093_firmware | All versions | – |
| qualcomm | qxm1094_firmware | All versions | – |
| qualcomm | qxm1095_firmware | All versions | – |
| qualcomm | qxm1096_firmware | All versions | – |
| qualcomm | sa7255p_firmware | All versions | – |
| qualcomm | sa7775p_firmware | All versions | – |
| qualcomm | sa8255p_firmware | All versions | – |
| qualcomm | sa8620p_firmware | All versions | – |
| qualcomm | sa8770p_firmware | All versions | – |
| qualcomm | sa9000p_firmware | All versions | – |
| qualcomm | sar1165p_firmware | All versions | – |
| qualcomm | sar1250p_firmware | All versions | – |
| qualcomm | sar2130p_firmware | All versions | – |
| qualcomm | sar2230p_firmware | All versions | – |
| qualcomm | sd865_5g_firmware | All versions | – |
| qualcomm | snapdragon_8_elite_gen_5_firmware | All versions | – |
| qualcomm | snapdragon_865_5g_mobile_platform_firmware | All versions | – |
| qualcomm | snapdragon_865\+_5g_mobile_platform_firmware | All versions | – |
| qualcomm | snapdragon_870_5g_mobile_platform_firmware | All versions | – |
| qualcomm | snapdragon_ar1_gen_1_platform_firmware | All versions | – |
| qualcomm | snapdragon_ar1\+_gen_1_platform_firmware | All versions | – |
| qualcomm | snapdragon_x55_5g_modem-rf_system_firmware | All versions | – |
| qualcomm | snapdragon_xr2_5g_platform_firmware | All versions | – |
| qualcomm | snapdragon_xr2\+_gen_1_platform_firmware | All versions | – |
| qualcomm | srv1h_firmware | All versions | – |
| qualcomm | srv1m_firmware | All versions | – |
| qualcomm | sxr2230p_firmware | All versions | – |
| qualcomm | sxr2250p_firmware | All versions | – |
| qualcomm | wcd9378c_firmware | All versions | – |
| qualcomm | wcd9380_firmware | All versions | – |
| qualcomm | wcd9385_firmware | All versions | – |
| qualcomm | wcd9395_firmware | All versions | – |
| qualcomm | wcn3950_firmware | All versions | – |
| qualcomm | wcn7860_firmware | All versions | – |
| qualcomm | wcn7861_firmware | All versions | – |
| qualcomm | wsa8810_firmware | All versions | – |
| qualcomm | wsa8815_firmware | All versions | – |
| qualcomm | wsa8830_firmware | All versions | – |
| qualcomm | wsa8832_firmware | All versions | – |
| qualcomm | wsa8835_firmware | All versions | – |
| qualcomm | wsa8840_firmware | All versions | – |
| qualcomm | wsa8845_firmware | All versions | – |
| qualcomm | wsa8845h_firmware | All versions | – |
| qualcomm | x2000077_firmware | All versions | – |
| qualcomm | x2000086_firmware | All versions | – |
| qualcomm | x2000090_firmware | All versions | – |
| qualcomm | x2000092_firmware | All versions | – |
| qualcomm | x2000094_firmware | All versions | – |
| qualcomm | xg101002_firmware | All versions | – |
| qualcomm | xg101032_firmware | All versions | – |
| qualcomm | xg101039_firmware | All versions | – |
Original title
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
Original description
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
nvd CVSS3.1
7.1
Vulnerability type
CWE-497
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026