CVE-2025-21440

HIGH

7.8

Description

Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver.

Details CVE

Score CVSS v3.17.8

SeveriteHIGH

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisLOW

Interaction utilisateurNONE

Publie4/7/2025

Derniere modification8/20/2025

Sourcenvd

Observations honeypot0

Produits affectes

qualcomm:aqt1000qualcomm:aqt1000_firmwarequalcomm:fastconnect_6200qualcomm:fastconnect_6200_firmwarequalcomm:fastconnect_6700qualcomm:fastconnect_6700_firmwarequalcomm:fastconnect_6800qualcomm:fastconnect_6800_firmwarequalcomm:fastconnect_6900qualcomm:fastconnect_6900_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:qca1062qualcomm:qca1062_firmwarequalcomm:qca1064qualcomm:qca1064_firmwarequalcomm:qca2062qualcomm:qca2062_firmwarequalcomm:qca2064qualcomm:qca2064_firmwarequalcomm:qca2065qualcomm:qca2065_firmwarequalcomm:qca2066qualcomm:qca2066_firmwarequalcomm:qca6391qualcomm:qca6391_firmwarequalcomm:qca6420qualcomm:qca6420_firmwarequalcomm:qca6430qualcomm:qca6430_firmwarequalcomm:qcc2073qualcomm:qcc2073_firmwarequalcomm:qcc2076qualcomm:qcc2076_firmwarequalcomm:qcm5430qualcomm:qcm5430_firmwarequalcomm:qcm6490qualcomm:qcm6490_firmwarequalcomm:qcs5430qualcomm:qcs5430_firmwarequalcomm:qcs6490qualcomm:qcs6490_firmwarequalcomm:sc8180x\+sdx55qualcomm:sc8180x\+sdx55_firmwarequalcomm:sc8380xpqualcomm:sc8380xp_firmwarequalcomm:sm6250qualcomm:sm6250_firmwarequalcomm:snapdragon_7c\+_gen_3_computequalcomm:snapdragon_7c\+_gen_3_compute_firmwarequalcomm:snapdragon_7c_compute_platform_\(sc7180-ac\)qualcomm:snapdragon_7c_compute_platform_\(sc7180-ac\)_firmwarequalcomm:snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"qualcomm:snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmwarequalcomm:snapdragon_8c_compute_platform_\(sc8180x-ad\)qualcomm:snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmwarequalcomm:snapdragon_8c_compute_platform_\(sc8180xp-ad\)qualcomm:snapdragon_8c_compute_platform_\(sc8180xp-ad\)_firmwarequalcomm:snapdragon_8cx_compute_platform_\(sc8180x-aa\)qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmwarequalcomm:snapdragon_8cx_compute_platform_\(sc8180x-ab\)qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmwarequalcomm:snapdragon_8cx_compute_platform_\(sc8180xp-ac\)qualcomm:snapdragon_8cx_compute_platform_\(sc8180xp-ac\)_firmwarequalcomm:snapdragon_8cx_compute_platform_\(sc8180xp-af\)qualcomm:snapdragon_8cx_compute_platform_\(sc8180xp-af\)_firmwarequalcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmwarequalcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmwarequalcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-aa\)_firmwarequalcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180xp-ab\)_firmwarequalcomm:video_collaboration_vc3_platformqualcomm:video_collaboration_vc3_platform_firmwarequalcomm:wcd9340qualcomm:wcd9340_firmwarequalcomm:wcd9341qualcomm:wcd9341_firmwarequalcomm:wcd9370qualcomm:wcd9370_firmwarequalcomm:wcd9375qualcomm:wcd9375_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcd9385qualcomm:wcd9385_firmwarequalcomm:wsa8810qualcomm:wsa8810_firmwarequalcomm:wsa8815qualcomm:wsa8815_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmware

Faiblesses (CWE)

CWE-787

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html(product-security@qualcomm.com)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.