FKIE_CVE-2025-21458

Vulnerability from fkie_nvd - Published: 2025-08-06 08:15 - Updated: 2025-08-19 13:21
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Memory corruption when IOCTL interface is called to map and unmap buffers simultaneously.
References
product-security@qualcomm.comhttps://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.htmlPatch, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm fastconnect_6900_firmware -
qualcomm fastconnect_6900 -
qualcomm qam8255p_firmware -
qualcomm qam8255p -
qualcomm qam8650p_firmware -
qualcomm qam8650p -
qualcomm qam8775p_firmware -
qualcomm qam8775p -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6698aq_firmware -
qualcomm qca6698aq -
qualcomm qca6797aq_firmware -
qualcomm qca6797aq -
qualcomm sa7255p_firmware -
qualcomm sa7255p -
qualcomm sa7775p_firmware -
qualcomm sa7775p -
qualcomm sa8255p_firmware -
qualcomm sa8255p -
qualcomm sa8620p_firmware -
qualcomm sa8620p -
qualcomm sa8650p_firmware -
qualcomm sa8650p -
qualcomm sa8775p_firmware -
qualcomm sa8775p -
qualcomm sa9000p_firmware -
qualcomm sa9000p -
qualcomm snapdragon_888_5g_mobile_platform_firmware -
qualcomm snapdragon_888_5g_mobile_platform -
qualcomm snapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)_firmware -
qualcomm snapdragon_888\+_5g_mobile_platform_\(sm8350-ac\) -
qualcomm sw5100_firmware -
qualcomm sw5100 -
qualcomm sw5100p_firmware -
qualcomm sw5100p -
qualcomm wcd9380_firmware -
qualcomm wcd9380 -
qualcomm wcd9385_firmware -
qualcomm wcd9385 -
qualcomm wcn3980_firmware -
qualcomm wcn3980 -
qualcomm wcn3988_firmware -
qualcomm wcn3988 -
qualcomm wsa8830_firmware -
qualcomm wsa8830 -
qualcomm wsa8835_firmware -
qualcomm wsa8835 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E670F500-9B71-4BBE-B5DA-221D35803C89",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9ADEB5C5-B79A-4F45-B7D3-75945B38DB6C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3723C7B1-A7E2-401F-8D6D-189350F6BCA5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B12B89EF-7B12-481E-BCBC-F12B9D16321A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qam8650p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "295E75BD-2A6C-4A76-A376-A9977DDB17FF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qam8650p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BD37AA1A-B911-45BF-9BCC-C772FA83E657",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qam8775p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "49B2DF91-BE6B-4E9E-B63C-98DADD29AD6B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qam8775p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "58170126-928F-4AE5-B5AF-5ED4710F9BA2",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C31FA74C-6659-4457-BC32-257624F43C66",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FA1F8F4-EAF2-4704-A8A6-19AD3CA1B577",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3F7853D-09EE-476F-B48D-BB30AEB4A67D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "797295C2-535C-46A9-A725-E1A5405F0436",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:qca6797aq:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8BFC575E-594E-4711-94B1-2DC8D03B9AC4",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B651F0A-34DA-400F-A376-B499BFDF8E86",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4CFF093D-98C8-470F-8330-E5126E06343A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C32CA38-5D48-4108-9858-FD66E20CAF2F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1997F8B-17B8-4DE3-BCF7-726928720592",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC6E268D-C4AF-4950-9223-39EA36D538A8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "073C1A81-D02B-4F2F-9378-CD1B2DCE0E5B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6ACE6D64-A498-482F-8270-718F4884CFFD",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6E016D6-1B83-4261-A27E-1F9873F81E14",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0E807AA-5646-48AD-9A5C-B0B13E222AA9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8650p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "45FBB72B-B850-4E3F-ACBB-9392157FF131",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C79595B-1259-4431-96F9-C5A24E624305",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa8775p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F2F3431-9CD7-4D4F-833D-DD4D3ACF94C7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A024AB04-B213-4018-A4C1-FA467C7BA775",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2A8AB7C-5D34-4794-8C06-2193075B323F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:snapdragon_888_5g_mobile_platform_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "22A78236-5965-4F65-9001-3FE7FF6D27E8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:snapdragon_888_5g_mobile_platform:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "414C5C1D-A5DA-47C7-B6C9-3564DD4DD911",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:snapdragon_888\\+_5g_mobile_platform_\\(sm8350-ac\\)_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "64211DA1-CC87-4AAC-AE3F-523FFED971F7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:snapdragon_888\\+_5g_mobile_platform_\\(sm8350-ac\\):-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF804E3E-E3A0-4B43-B809-E58EE4BF9888",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sw5100_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA1BF9BB-AF11-46A7-A71C-F7D289E76E3F",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sw5100:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B8455D6-287D-4934-8E4D-F4127A9C0449",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:sw5100p_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB599A9F-0305-4FE4-8623-0F86630FEDCB",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:sw5100p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EEB883BF-68B2-4C25-84DC-5DA953BFAA2F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "70292B01-617F-44AD-AF77-1AFC1450523D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FA94C6D6-85DB-4031-AAF4-C399019AE16D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "92B17201-8185-47F1-9720-5AB4ECD11B22",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1FA2EB9-416F-4D69-8786-386CC73978AE",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9C6E9038-9B18-4958-BE1E-215901C9B4B2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B36D3274-F8D0-49C5-A6D5-95F5DC6D1950",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4BFB25F-013B-48E3-99FF-3E8687F94423",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF676C5B-838B-446C-A689-6A25AB8A87E2",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "11B69595-E488-4590-A150-CE5BE08B5E13",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF680174-5FA6-47D9-8EAB-CC2A37A7BD42",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F80BC68E-7476-4A40-9F48-53722FE9A5BF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B36F4B2-BAA3-45AD-9967-0EB482C99708",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Memory corruption when IOCTL interface is called to map and unmap buffers simultaneously."
    },
    {
      "lang": "es",
      "value": "Corrupci\u00f3n de memoria cuando se llama a la interfaz IOCTL para mapear y desasignar b\u00faferes simult\u00e1neamente."
    }
  ],
  "id": "CVE-2025-21458",
  "lastModified": "2025-08-19T13:21:06.897",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "product-security@qualcomm.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-08-06T08:15:27.233",
  "references": [
    {
      "source": "product-security@qualcomm.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html"
    }
  ],
  "sourceIdentifier": "product-security@qualcomm.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "product-security@qualcomm.com",
      "type": "Secondary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.