CVE-2025-21468

HIGH
Published May 6, 2025 Modified Aug 11, 2025 CWE-787

Description

Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer.

Is your site exposed to CVE-2025-21468?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

7.8
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Weakness Type (CWE)

CWE-787 Out-of-bounds Write

Affected Products

Vendor Product
qualcomm ar8035_firmware
qualcomm ar8035
qualcomm csra6620_firmware
qualcomm csra6620
qualcomm csra6640_firmware
qualcomm csra6640
qualcomm fastconnect_6200_firmware
qualcomm fastconnect_6200
qualcomm fastconnect_6700_firmware
qualcomm fastconnect_6700
qualcomm wcd9380_firmware
qualcomm wcd9380
qualcomm wcd9385_firmware
qualcomm wcd9385
qualcomm wcd9390_firmware
qualcomm wcd9390
qualcomm wcd9395_firmware
qualcomm wcd9395
qualcomm wcn3910_firmware
qualcomm wcn3910
qualcomm wcn3950_firmware
qualcomm wcn3950
qualcomm wcn3980_firmware
qualcomm wcn3980
qualcomm wcn3988_firmware
qualcomm wcn3988
qualcomm wcn3990_firmware
qualcomm wcn3990
qualcomm wcn6450_firmware
qualcomm wcn6450
qualcomm wcn6650_firmware
qualcomm wcn6650
qualcomm wcn6740_firmware
qualcomm wcn6740
qualcomm wcn6755_firmware
qualcomm wcn6755
qualcomm wcn7750_firmware
qualcomm wcn7750
qualcomm wcn7860_firmware
qualcomm wcn7860
qualcomm wcn7861_firmware
qualcomm wcn7861
qualcomm wcn7880_firmware
qualcomm wcn7880
qualcomm wcn7881_firmware
qualcomm wcn7881
qualcomm wsa8810_firmware
qualcomm wsa8810
qualcomm wsa8815_firmware
qualcomm wsa8815
qualcomm wsa8830_firmware
qualcomm wsa8830
qualcomm wsa8832_firmware
qualcomm wsa8832
qualcomm wsa8835_firmware
qualcomm wsa8835
qualcomm wsa8840_firmware
qualcomm wsa8840
qualcomm wsa8845_firmware
qualcomm wsa8845
qualcomm wsa8845h_firmware
qualcomm wsa8845h
qualcomm fastconnect_6900_firmware
qualcomm fastconnect_6900
qualcomm fastconnect_7800_firmware
qualcomm fastconnect_7800
qualcomm flight_rb5_5g_firmware
qualcomm flight_rb5_5g
qualcomm mdm9628_firmware
qualcomm mdm9628
qualcomm qam8295p_firmware
qualcomm qam8295p
qualcomm qca6174a_firmware
qualcomm qca6174a
qualcomm qca6391_firmware
qualcomm qca6391
qualcomm qca6564a_firmware
qualcomm qca6564a
qualcomm qca6564au_firmware
qualcomm qca6564au
qualcomm qca6574_firmware
qualcomm qca6574
qualcomm qca6574a_firmware
qualcomm qca6574a
qualcomm qca6574au_firmware
qualcomm qca6574au
qualcomm qca6595_firmware
qualcomm qca6595
qualcomm qca6595au_firmware
qualcomm qca6595au
qualcomm qca6696_firmware
qualcomm qca6696
qualcomm qca6698aq_firmware
qualcomm qca6698aq
qualcomm qca8081_firmware
qualcomm qca8081
qualcomm qca8337_firmware
qualcomm qca8337
qualcomm qca9377_firmware
qualcomm qca9377
qualcomm qcm4490_firmware
qualcomm qcm4490
qualcomm qcm5430_firmware
qualcomm qcm5430
qualcomm qcm6490_firmware
qualcomm qcm6490
qualcomm qcm8550_firmware
qualcomm qcm8550
qualcomm qcn6024_firmware
qualcomm qcn6024
qualcomm qcn9011_firmware
qualcomm qcn9011
qualcomm qcn9012_firmware
qualcomm qcn9012
qualcomm qcn9024_firmware
qualcomm qcn9024
qualcomm qcn9274_firmware
qualcomm qcn9274
qualcomm qcs410_firmware
qualcomm qcs410
qualcomm qcs4490_firmware
qualcomm qcs4490
qualcomm qcs5430_firmware
qualcomm qcs5430
qualcomm qcs610_firmware
qualcomm qcs610
qualcomm qcs615_firmware
qualcomm qcs615
qualcomm qcs6490_firmware
qualcomm qcs6490
qualcomm qcs7230_firmware
qualcomm qcs7230
qualcomm qcs8250_firmware
qualcomm qcs8250
qualcomm qcs8300_firmware
qualcomm qcs8300
qualcomm qcs8550_firmware
qualcomm qcs8550
qualcomm qcs9100_firmware
qualcomm qcs9100
qualcomm qmp1000_firmware
qualcomm qmp1000
qualcomm qrb5165m_firmware
qualcomm qrb5165m
qualcomm qrb5165n_firmware
qualcomm qrb5165n
qualcomm qsm8350_firmware
qualcomm qsm8350
qualcomm video_collaboration_vc1_platform_firmware
qualcomm video_collaboration_vc1_platform
qualcomm video_collaboration_vc3_platform_firmware
qualcomm video_collaboration_vc3_platform
qualcomm video_collaboration_vc5_platform_firmware
qualcomm video_collaboration_vc5_platform
qualcomm robotics_rb2_firmware
qualcomm robotics_rb2
qualcomm robotics_rb5_firmware
qualcomm robotics_rb5
qualcomm sa4150p_firmware
qualcomm sa4150p
qualcomm sa4155p_firmware
qualcomm sa4155p
qualcomm sa6145p_firmware
qualcomm sa6145p
qualcomm sa6150p_firmware
qualcomm sa6150p
qualcomm sa6155p_firmware
qualcomm sa6155p
qualcomm sa8145p_firmware
qualcomm sa8145p
qualcomm sa8150p_firmware
qualcomm sa8150p
qualcomm sa8155p_firmware
qualcomm sa8155p
qualcomm sa8195p_firmware
qualcomm sa8195p
qualcomm sa8295p_firmware
qualcomm sa8295p
qualcomm sa8530p_firmware
qualcomm sa8530p
qualcomm sa8540p_firmware
qualcomm sa8540p
qualcomm sa9000p_firmware
qualcomm sa9000p
qualcomm sd_8_gen1_5g_firmware
qualcomm sd_8_gen1_5g
qualcomm sd888_firmware
qualcomm sd888
qualcomm sdx61_firmware
qualcomm sdx61
qualcomm sg8275p_firmware
qualcomm sg8275p
qualcomm sm6370_firmware
qualcomm sm6370
qualcomm sm6650_firmware
qualcomm sm6650
qualcomm sm6650p_firmware
qualcomm sm6650p
qualcomm sm7315_firmware
qualcomm sm7315
qualcomm sm7325p_firmware
qualcomm sm7325p
qualcomm sm7635_firmware
qualcomm sm7635
qualcomm sm7675_firmware
qualcomm sm7675
qualcomm sm7675p_firmware
qualcomm sm7675p
qualcomm sm8550p_firmware
qualcomm sm8550p
qualcomm sm8635_firmware
qualcomm sm8635
qualcomm sm8635p_firmware
qualcomm sm8635p
qualcomm sm8650q_firmware
qualcomm sm8650q
qualcomm sm8735_firmware
qualcomm sm8735
qualcomm sm8750_firmware
qualcomm sm8750
qualcomm sm8750p_firmware
qualcomm sm8750p
qualcomm smart_audio_400_firmware
qualcomm smart_audio_400
qualcomm snapdragon_4_gen_1_mobile_firmware
qualcomm snapdragon_4_gen_1_mobile
qualcomm snapdragon_4_gen_2_mobile_firmware
qualcomm snapdragon_4_gen_2_mobile
qualcomm snapdragon_480_5g_mobile_firmware
qualcomm snapdragon_480_5g_mobile
qualcomm snapdragon_480\+_5g_mobile_firmware
qualcomm snapdragon_480\+_5g_mobile
qualcomm snapdragon_695_5g_mobile_firmware
qualcomm snapdragon_695_5g_mobile
qualcomm snapdragon_778g_5g_mobile_firmware
qualcomm snapdragon_778g_5g_mobile
qualcomm snapdragon_778g\+_5g_mobile_firmware
qualcomm snapdragon_778g\+_5g_mobile
qualcomm snapdragon_780g_5g_mobile_firmware
qualcomm snapdragon_780g_5g_mobile
qualcomm snapdragon_782g_mobile_firmware
qualcomm snapdragon_782g_mobile
qualcomm snapdragon_7c\+_gen_3_compute_firmware
qualcomm snapdragon_7c\+_gen_3_compute
qualcomm snapdragon_8_gen_1_mobile_firmware
qualcomm snapdragon_8_gen_1_mobile
qualcomm snapdragon_8_gen_2_mobile_firmware
qualcomm snapdragon_8_gen_2_mobile
qualcomm snapdragon_8_gen_3_mobile_firmware
qualcomm snapdragon_8_gen_3_mobile
qualcomm snapdragon_8\+_gen_1_mobile_firmware
qualcomm snapdragon_8\+_gen_1_mobile
qualcomm snapdragon_8\+_gen_2_mobile_firmware
qualcomm snapdragon_8\+_gen_2_mobile
qualcomm snapdragon_888_5g_mobile_firmware
qualcomm snapdragon_888_5g_mobile
qualcomm snapdragon_888\+_5g_mobile_firmware
qualcomm snapdragon_888\+_5g_mobile
qualcomm snapdragon_ar1_gen_1_firmware
qualcomm snapdragon_ar1_gen_1
qualcomm snapdragon_ar2_gen_1_firmware
qualcomm snapdragon_ar2_gen_1
qualcomm snapdragon_auto_5g_modem-rf_firmware
qualcomm snapdragon_auto_5g_modem-rf
qualcomm snapdragon_w5\+_gen_1_wearable_firmware
qualcomm snapdragon_w5\+_gen_1_wearable
qualcomm snapdragon_x12_lte_modem_firmware
qualcomm snapdragon_x12_lte_modem
qualcomm snapdragon_x62_5g_modem-rf_firmware
qualcomm snapdragon_x62_5g_modem-rf
qualcomm snapdragon_x65_5g_modem-rf_firmware
qualcomm snapdragon_x65_5g_modem-rf
qualcomm ssg2115p_firmware
qualcomm ssg2115p
qualcomm ssg2125p_firmware
qualcomm ssg2125p
qualcomm sw5100_firmware
qualcomm sw5100
qualcomm sw5100p_firmware
qualcomm sw5100p
qualcomm sxr1230p_firmware
qualcomm sxr1230p
qualcomm sxr2230p_firmware
qualcomm sxr2230p
qualcomm sxr2250p_firmware
qualcomm sxr2250p
qualcomm sxr2330p_firmware
qualcomm sxr2330p
qualcomm talynplus_firmware
qualcomm talynplus
qualcomm vision_intelligence_400_firmware
qualcomm vision_intelligence_400
qualcomm wcd9335_firmware
qualcomm wcd9335
qualcomm wcd9341_firmware
qualcomm wcd9341
qualcomm wcd9370_firmware
qualcomm wcd9370
qualcomm wcd9375_firmware
qualcomm wcd9375
qualcomm wcd9378_firmware
qualcomm wcd9378

References

Frequently Asked Questions

What is CVE-2025-21468? +
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to write null character at the end of buffer. It has a CVSS v3.1 base score of 7.8 (HIGH).
How severe is CVE-2025-21468? +
CVE-2025-21468 has a CVSS v3.1 score of 7.8 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching.
What products are affected by CVE-2025-21468? +
CVE-2025-21468 affects products from qualcomm, specifically: ar8035, ar8035_firmware, csra6620, csra6620_firmware, csra6640, csra6640_firmware, fastconnect_6200, fastconnect_6200_firmware, fastconnect_6700, fastconnect_6700_firmware, fastconnect_6900, fastconnect_6900_firmware, fastconnect_7800, fastconnect_7800_firmware, flight_rb5_5g, flight_rb5_5g_firmware, mdm9628, mdm9628_firmware, qam8295p, qam8295p_firmware, qca6174a, qca6174a_firmware, qca6391, qca6391_firmware, qca6564a, qca6564a_firmware, qca6564au, qca6564au_firmware, qca6574, qca6574_firmware, qca6574a, qca6574a_firmware, qca6574au, qca6574au_firmware, qca6595, qca6595_firmware, qca6595au, qca6595au_firmware, qca6696, qca6696_firmware, qca6698aq, qca6698aq_firmware, qca8081, qca8081_firmware, qca8337, qca8337_firmware, qca9377, qca9377_firmware, qcm4490, qcm4490_firmware, qcm5430, qcm5430_firmware, qcm6490, qcm6490_firmware, qcm8550, qcm8550_firmware, qcn6024, qcn6024_firmware, qcn9011, qcn9011_firmware, qcn9012, qcn9012_firmware, qcn9024, qcn9024_firmware, qcn9274, qcn9274_firmware, qcs410, qcs410_firmware, qcs4490, qcs4490_firmware, qcs5430, qcs5430_firmware, qcs610, qcs610_firmware, qcs615, qcs615_firmware, qcs6490, qcs6490_firmware, qcs7230, qcs7230_firmware, qcs8250, qcs8250_firmware, qcs8300, qcs8300_firmware, qcs8550, qcs8550_firmware, qcs9100, qcs9100_firmware, qmp1000, qmp1000_firmware, qrb5165m, qrb5165m_firmware, qrb5165n, qrb5165n_firmware, qsm8350, qsm8350_firmware, robotics_rb2, robotics_rb2_firmware, robotics_rb5, robotics_rb5_firmware, sa4150p, sa4150p_firmware, sa4155p, sa4155p_firmware, sa6145p, sa6145p_firmware, sa6150p, sa6150p_firmware, sa6155p, sa6155p_firmware, sa8145p, sa8145p_firmware, sa8150p, sa8150p_firmware, sa8155p, sa8155p_firmware, sa8195p, sa8195p_firmware, sa8295p, sa8295p_firmware, sa8530p, sa8530p_firmware, sa8540p, sa8540p_firmware, sa9000p, sa9000p_firmware, sd888, sd888_firmware, sd_8_gen1_5g, sd_8_gen1_5g_firmware, sdx61, sdx61_firmware, sg8275p, sg8275p_firmware, sm6370, sm6370_firmware, sm6650, sm6650_firmware, sm6650p, sm6650p_firmware, sm7315, sm7315_firmware, sm7325p, sm7325p_firmware, sm7635, sm7635_firmware, sm7675, sm7675_firmware, sm7675p, sm7675p_firmware, sm8550p, sm8550p_firmware, sm8635, sm8635_firmware, sm8635p, sm8635p_firmware, sm8650q, sm8650q_firmware, sm8735, sm8735_firmware, sm8750, sm8750_firmware, sm8750p, sm8750p_firmware, smart_audio_400, smart_audio_400_firmware, snapdragon_480\+_5g_mobile, snapdragon_480\+_5g_mobile_firmware, snapdragon_480_5g_mobile, snapdragon_480_5g_mobile_firmware, snapdragon_4_gen_1_mobile, snapdragon_4_gen_1_mobile_firmware, snapdragon_4_gen_2_mobile, snapdragon_4_gen_2_mobile_firmware, snapdragon_695_5g_mobile, snapdragon_695_5g_mobile_firmware, snapdragon_778g\+_5g_mobile, snapdragon_778g\+_5g_mobile_firmware, snapdragon_778g_5g_mobile, snapdragon_778g_5g_mobile_firmware, snapdragon_780g_5g_mobile, snapdragon_780g_5g_mobile_firmware, snapdragon_782g_mobile, snapdragon_782g_mobile_firmware, snapdragon_7c\+_gen_3_compute, snapdragon_7c\+_gen_3_compute_firmware, snapdragon_888\+_5g_mobile, snapdragon_888\+_5g_mobile_firmware, snapdragon_888_5g_mobile, snapdragon_888_5g_mobile_firmware, snapdragon_8\+_gen_1_mobile, snapdragon_8\+_gen_1_mobile_firmware, snapdragon_8\+_gen_2_mobile, snapdragon_8\+_gen_2_mobile_firmware, snapdragon_8_gen_1_mobile, snapdragon_8_gen_1_mobile_firmware, snapdragon_8_gen_2_mobile, snapdragon_8_gen_2_mobile_firmware, snapdragon_8_gen_3_mobile, snapdragon_8_gen_3_mobile_firmware, snapdragon_ar1_gen_1, snapdragon_ar1_gen_1_firmware, snapdragon_ar2_gen_1, snapdragon_ar2_gen_1_firmware, snapdragon_auto_5g_modem-rf, snapdragon_auto_5g_modem-rf_firmware, snapdragon_w5\+_gen_1_wearable, snapdragon_w5\+_gen_1_wearable_firmware, snapdragon_x12_lte_modem, snapdragon_x12_lte_modem_firmware, snapdragon_x62_5g_modem-rf, snapdragon_x62_5g_modem-rf_firmware, snapdragon_x65_5g_modem-rf, snapdragon_x65_5g_modem-rf_firmware, ssg2115p, ssg2115p_firmware, ssg2125p, ssg2125p_firmware, sw5100, sw5100_firmware, sw5100p, sw5100p_firmware, sxr1230p, sxr1230p_firmware, sxr2230p, sxr2230p_firmware, sxr2250p, sxr2250p_firmware, sxr2330p, sxr2330p_firmware, talynplus, talynplus_firmware, video_collaboration_vc1_platform, video_collaboration_vc1_platform_firmware, video_collaboration_vc3_platform, video_collaboration_vc3_platform_firmware, video_collaboration_vc5_platform, video_collaboration_vc5_platform_firmware, vision_intelligence_400, vision_intelligence_400_firmware, wcd9335, wcd9335_firmware, wcd9341, wcd9341_firmware, wcd9370, wcd9370_firmware, wcd9375, wcd9375_firmware, wcd9378, wcd9378_firmware, wcd9380, wcd9380_firmware, wcd9385, wcd9385_firmware, wcd9390, wcd9390_firmware, wcd9395, wcd9395_firmware, wcn3910, wcn3910_firmware, wcn3950, wcn3950_firmware, wcn3980, wcn3980_firmware, wcn3988, wcn3988_firmware, wcn3990, wcn3990_firmware, wcn6450, wcn6450_firmware, wcn6650, wcn6650_firmware, wcn6740, wcn6740_firmware, wcn6755, wcn6755_firmware, wcn7750, wcn7750_firmware, wcn7860, wcn7860_firmware, wcn7861, wcn7861_firmware, wcn7880, wcn7880_firmware, wcn7881, wcn7881_firmware, wsa8810, wsa8810_firmware, wsa8815, wsa8815_firmware, wsa8830, wsa8830_firmware, wsa8832, wsa8832_firmware, wsa8835, wsa8835_firmware, wsa8840, wsa8840_firmware, wsa8845, wsa8845_firmware, wsa8845h, wsa8845h_firmware. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-21468? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-21468 — free, no signup required.