Home

Description

Improper access control for volatile memory containing boot code in Universal Boot Loader (U-Boot) before 2017.11 and Qualcomm chips IPQ4019, IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker to execute arbitrary code.

PUBLISHED Reserved 2025-01-26 | Published 2025-12-10 | Updated 2025-12-10 | Assigner mitre




HIGH: 7.6CVSS:3.1/AC:L/AV:P/A:H/C:H/I:H/PR:N/S:C/UI:N

References

www.cisa.gov/news-events/ics-advisories/icsa-25-343-01

cve.org (CVE-2025-24857)

nvd.nist.gov (CVE-2025-24857)

Download JSON