Analysis
Impact
The vulnerability arises from a cryptographic flaw in the processing of a specific partition that manages the bootloader. Because authentication checks are missing, an attacker can write arbitrary data to the boot partition, effectively replacing the legitimate bootloader with a custom one. This grants the possibility to run malicious code during device startup, compromising the entire system integrity.
Affected Systems
Affected systems include Qualcomm Snapdragon devices; no specific firmware versions are listed in the advisory.
Risk and Exploitability
With a CVSS score of 8.2, the issue is considered high severity. The EPSS score is not available, and the vulnerability is not listed in KEV. Likewise, the attack vector is not explicitly described but likely requires local or privileged access to modify the boot partition, meaning physical or active device compromise is needed. Organizations should treat this as a critical condition until a patch is deployed.
Mitre Data 
CPE Configurations 
Affected Packages
OpenCVE Enrichment 
Vulnrichment