TROYANOSYVIRUS
Voltar para CVEs

CVE-2025-21436

HIGH
7.8

Descricao

Memory corruption may occur while initiating two IOCTL calls simultaneously to create processes from two different threads.

Detalhes CVE

Pontuacao CVSS v3.17.8
SeveridadeHIGH
Vetor CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vetor de ataqueLOCAL
ComplexidadeLOW
Privilegios necessariosLOW
Interacao do usuarioNONE
Publicado4/7/2025
Ultima modificacao8/20/2025
Fontenvd
Avistamentos honeypot0

Produtos afetados

qualcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:qmp1000qualcomm:qmp1000_firmwarequalcomm:sm8735qualcomm:sm8735_firmwarequalcomm:sm8750qualcomm:sm8750_firmwarequalcomm:sm8750pqualcomm:sm8750p_firmwarequalcomm:snapdragon_8_gen_3_mobile_platformqualcomm:snapdragon_8_gen_3_mobile_platform_firmwarequalcomm:snapdragon_w5\+_gen_1_wearable_platformqualcomm:snapdragon_w5\+_gen_1_wearable_platform_firmwarequalcomm:sw5100qualcomm:sw5100_firmwarequalcomm:sw5100pqualcomm:sw5100p_firmwarequalcomm:sxr2330pqualcomm:sxr2330p_firmwarequalcomm:wcd9378qualcomm:wcd9378_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcd9390qualcomm:wcd9390_firmwarequalcomm:wcd9395qualcomm:wcd9395_firmwarequalcomm:wcn7750qualcomm:wcn7750_firmwarequalcomm:wcn7860qualcomm:wcn7860_firmwarequalcomm:wcn7861qualcomm:wcn7861_firmwarequalcomm:wcn7880qualcomm:wcn7880_firmwarequalcomm:wcn7881qualcomm:wcn7881_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8832qualcomm:wsa8832_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmware

Fraquezas (CWE)

CWE-416

Referencias

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html(product-security@qualcomm.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.