← Back

CVE-2025-21426

nvd nist
Published: Jul 8, 2025Modified: Jul 21, 2025

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

Memory corruption while processing camera TPG write request.

Affected (10)

Qualcomm
10 products
Fastconnect 7800 Firmware
Snapdragon Ar1 Gen 1 Platform Firmware
Ssg2115p Firmware
Ssg2125p Firmware
Sxr1230p Firmware
Wcd9380 Firmware
Wcd9385 Firmware
Wsa8830 Firmware
Wsa8832 Firmware
Wsa8835 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Fastconnect 7800 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Fastconnect 7800
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Snapdragon Ar1 Gen 1 Platform Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Snapdragon Ar1 Gen 1 Platform
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ssg2115p Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Ssg2115p
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ssg2125p Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Ssg2125p
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sxr1230p Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sxr1230p
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wcd9380 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Wcd9380
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wcd9385 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Wcd9385
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wsa8830 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Wsa8830
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wsa8832 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Wsa8832
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Wsa8835 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Wsa8835
All versions

Related CWEs

CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (1)

Source: product-security@qualcomm.com
PatchVendor Advisory

Timeline

No history available yet.