CVE-2025-47402

high-risk

Published 2026-02-02

Transient DOS when processing a received frame with an excessively large authentication information element.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.5/10 Medium

ADJACENT_NETWORK / LOW complexity

Sa8620P Firmware

Sa8770P Firmware

Sa9000P Firmware

Sar2130P Firmware

Sm7675 Firmware

Sm7675P Firmware

Sm8635 Firmware

Sm8635P Firmware

Sm8650Q Firmware

Sm8750P Firmware

Snapdragon 8 Elite Firmware

Snapdragon 8 Gen 3 Mobile Firmware

Snapdragon Auto 5G Modem-Rf Gen 2 Firmware

Snapdragon X72 5G Modem-Rf Firmware

Snapdragon X75 5G Modem-Rf Firmware

Srv1H Firmware

Srv1M Firmware

Ssg2115P Firmware

Ssg2125P Firmware

Sxr1230P Firmware

Qualcomm

Vendor Advisory https://docs.qualcomm.com/product/publicresources/securitybulletin/february-2026...

/ 100

high-risk

Severity 21/34 · High

Exploitability 0/34 · Minimal

Exposure 30/34 · Critical