CVE-2026-25262

Name of the Vulnerable Software and Affected Versions Qualcomm Snapdragon chips (MDM and MSM series)

Description A hardware-level flaw exists in the BootROM of certain legacy and mid-range Snapdragon chipsets. The issue is exposed via the Sahara protocol in Emergency Download Mode (EDL), allowing an attacker with physical access to bypass secure boot, access data, and potentially achieve full device compromise. This represents a supply-chain risk.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.