Home

Description

Memory corruption while IOCTL call is invoked from user-space to read board data.

PUBLISHED Reserved 2024-12-18 | Published 2025-04-07 | Updated 2026-02-26 | Assigner qualcomm




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-125: Out-of-bounds Read

Product status

Default status
unaffected

FastConnect 6200
affected

FastConnect 6700
affected

FastConnect 6900
affected

FastConnect 7800
affected

QCA6164
affected

QCA6174
affected

QCA6174A
affected

QCA6595AU
affected

QCA9377
affected

QCM5430
affected

QCM6490
affected

QCN7605
affected

QCN7606
affected

QCS5430
affected

QCS6490
affected

Qualcomm Video Collaboration VC3 Platform
affected

SC8180X+SDX55
affected

SC8380XP
affected

SM6250
affected

Snapdragon 7c Compute Platform (SC7180-AC)
affected

Snapdragon 7c Gen 2 Compute Platform (SC7180-AD) "Rennell Pro"
affected

Snapdragon 7c+ Gen 3 Compute
affected

Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite"
affected

Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite"
affected

Snapdragon 8cx Compute Platform (SC8180X-AA, AB)
affected

Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro"
affected

Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro"
affected

Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB)
affected

Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB)
affected

WCD9370
affected

WCD9375
affected

WCD9380
affected

WCD9385
affected

WSA8830
affected

WSA8835
affected

WSA8840
affected

WSA8845
affected

WSA8845H
affected

References

docs.qualcomm.com/...curitybulletin/april-2025-bulletin.html

cve.org (CVE-2025-21438)

nvd.nist.gov (CVE-2025-21438)

Download JSON