CVE-2025-47370

MEDIUM

Qualcomm Ar8035 Firmware - Reachable Assertion

Title source: rule

Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan.

CVSS v3 6.5

EPSS 0.0001

EPSS Percentile 0.9%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-617

Status published

Products (50)

qualcomm/ar8035_firmware

qualcomm/csrb31024_firmware

qualcomm/fastconnect_6700_firmware

qualcomm/fastconnect_6900_firmware

qualcomm/fastconnect_7800_firmware

qualcomm/qam8255p_firmware

qualcomm/qam8295p_firmware

qualcomm/qam8650p_firmware

qualcomm/qam8775p_firmware

qualcomm/qamsrv1h_firmware

... and 40 more

Published Nov 04, 2025

Tracked Since Feb 18, 2026