CVE-2025-21472

Published: Aug 6, 2025Modified: Aug 18, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Exploitability: 1.8 / Impact: 3.6

Source: product-security@qualcomm.com (Secondary)

Description

Information disclosure while capturing logs as eSE debug messages are logged.

Affected (12)

Products: Qualcomm: Fastconnect 6900 Firmware, Fastconnect 7800 Firmware, Qca9367 Firmware, Qca9377 Firmware, Qcs8550 Firmware, Sa8530p Firmware, Sa8540p Firmware, Sa9000p Firmware, Snapdragon 8 Gen 1 Mobile Platform Firmware, Wcd9380 Firmware, Wsa8830 Firmware, Wsa8835 Firmware

12 products

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Qca9367 Firmware

Qca9377 Firmware

Qcs8550 Firmware

Sa8530p Firmware

Sa8540p Firmware

Sa9000p Firmware

Snapdragon 8 Gen 1 Mobile Platform Firmware

Wcd9380 Firmware

Wsa8830 Firmware

Wsa8835 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 6900 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 6900	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Fastconnect 7800 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Fastconnect 7800	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca9367 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca9367	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qca9377 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qca9377	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Qcs8550 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Qcs8550	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8530p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8530p	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa8540p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa8540p	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Sa9000p Firmware	All versions

Running on/with	Platform Versions
Qualcomm Sa9000p	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Snapdragon 8 Gen 1 Mobile Platform Firmware	All versions

Running on/with	Platform Versions
Qualcomm Snapdragon 8 Gen 1 Mobile Platform	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wcd9380 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wcd9380	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8830 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8830	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Qualcomm Wsa8835 Firmware	All versions

Running on/with	Platform Versions
Qualcomm Wsa8835	All versions

Related CWEs

Active Debug Code

The product is deployed to unauthorized actors with debugging code still enabled or active, which can create unintended entry points or expose sensitive information.

References (1)

https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html

Source: product-security@qualcomm.com

Vendor Advisory

Timeline

No history available yet.