Sign-up

ID

VAR-202507-1286


CVE

CVE-2025-21427


TITLE

Buffer over-read vulnerability in multiple Qualcomm products

Trust: 0.8

sources: JVNDB: JVNDB-2025-009973

DESCRIPTION

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network. SM6250 firmware, SM6370 firmware, sm7315 Multiple Qualcomm products, including firmware, contain buffer over-read vulnerabilities and out-of-bounds read vulnerabilities.Information is obtained and service operation is interrupted (DoS) It may be in a state

Trust: 1.62

sources: NVD: CVE-2025-21427 // JVNDB: JVNDB-2025-009973

AFFECTED PRODUCTS

vendor:qualcommmodel:sa8295pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa6150pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:fastconnect 6900scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 865\+ 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 8\+ gen 1 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8145pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3990scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm4125scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:fastconnect 6800scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9380scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6564scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd855scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3950scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd660scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 730 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:apq8064auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8840scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8835scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9341scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:vision intelligence 100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon x50 5g modem-rfscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm6370scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs610scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcm6125scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8620pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 4 gen 2 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8775pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 710 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 8 gen1 5gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:vision intelligence 400scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 670 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 860 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9390scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 680 4g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 695 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:aqt1000scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs6125scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:robotics rb3scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6426scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 8 gen 3 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs9100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd888scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn6740scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9370scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3980scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3988scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8255pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd626scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8815scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 480 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm7325pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3660bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 888\+ 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 8 gen 1 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8845scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdx55scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3620scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 480\+ 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 730g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 4 gen 1 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6391scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 685 4g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd865 5gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 855 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon x55 5g modem-rfscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa6155pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6430scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8155scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6320scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa6145pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6797aqscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 782g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8996auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sw5100pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6564ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 732g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6436scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd730scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 8\+ gen 2 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sg4150pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3910scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon w5\+ gen 1 wearablescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs8550scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcm6490scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9375scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa4150pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:fastconnect 7800scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 778g\+ 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6335scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6420scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:video collaboration vc1 platformscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:fastconnect 6700scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 865 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sw5100scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 625 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 626 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs5430scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8830scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9335scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:talynplusscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 460 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qam8650pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qam8255pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6696scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 845 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 675 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8810scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:215 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa6155scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs6490scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8150pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9385scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa7255pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm7315scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3680bscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs410scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 835 mobile pcscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon xr2 5gscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8845hscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6595scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qam8295pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:smart display 200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcn9274scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sxr2130scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qam8775pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6595auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs4490scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 820 automotivescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 855\+ mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sxr1120scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3610scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs615scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcm8550scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:vision intelligence 200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 662 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd670scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd835scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdm429wscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa9000pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6310scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 888 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcm5430scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcn3615scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8195pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9395scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 8 gen 2 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 780g 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 212 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm8550pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sm6250scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6564auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wsa8832scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 429 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:video collaboration vc3 platformscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 210scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 778g 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:fastconnect 6200scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 7c\+ gen 3 computescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6678aqscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6698aqscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8650pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:205 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon xr2\+ gen 1scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa8155pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon xr1scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 720g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6688aqscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 870 5g mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:vision intelligence 300scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9326scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:wcd9340scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs8300scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa7775pscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 678 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:snapdragon 660 mobilescope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sa4155pscope:eqversion: -

Trust: 1.0

vendor:クアルコムmodel:snapdragon 480+ 5g mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 212 mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:sm7325pscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 460 mobilescope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 625 mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 429 mobilescope: - version: -

Trust: 0.8

vendor:クアルコムmodel:sm6370scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:sm8550pscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:sm6250scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 670 mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 4 gen 1 mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 662 mobilescope: - version: -

Trust: 0.8

vendor:クアルコムmodel:smart display 200scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 4 gen 2 mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 210 processorscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 480 5g mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 660 mobilescope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 626 mobile platformscope: - version: -

Trust: 0.8

vendor:クアルコムmodel:sm7315scope: - version: -

Trust: 0.8

vendor:クアルコムmodel:snapdragon 675 mobile platformscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2025-009973 // NVD: CVE-2025-21427

CVSS

SEVERITY

CVSSV2

CVSSV3

product-security@qualcomm.com: CVE-2025-21427
value: HIGH

Trust: 1.0

nvd@nist.gov: CVE-2025-21427
value: HIGH

Trust: 1.0

NVD: CVE-2025-21427
value: HIGH

Trust: 0.8

product-security@qualcomm.com: CVE-2025-21427
baseSeverity: HIGH
baseScore: 8.2
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: LOW
exploitabilityScore: 3.9
impactScore: 4.2
version: 3.1

Trust: 2.0

NVD: CVE-2025-21427
baseSeverity: HIGH
baseScore: 8.2
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: LOW
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: JVNDB: JVNDB-2025-009973 // NVD: CVE-2025-21427 // NVD: CVE-2025-21427

PROBLEMTYPE DATA

problemtype:CWE-126

Trust: 1.0

problemtype:CWE-125

Trust: 1.0

problemtype:Out-of-bounds read (CWE-125) [NVD evaluation ]

Trust: 0.8

problemtype: buffer over read (CWE-126) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2025-009973 // NVD: CVE-2025-21427

EXTERNAL IDS

db:NVDid:CVE-2025-21427

Trust: 2.6

db:JVNDBid:JVNDB-2025-009973

Trust: 0.8

sources: JVNDB: JVNDB-2025-009973 // NVD: CVE-2025-21427

REFERENCES

url:https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html

Trust: 1.8

url:https://nvd.nist.gov/vuln/detail/cve-2025-21427

Trust: 0.8

sources: JVNDB: JVNDB-2025-009973 // NVD: CVE-2025-21427

SOURCES

db:JVNDBid:JVNDB-2025-009973
db:NVDid:CVE-2025-21427

LAST UPDATE DATE

2025-08-11T23:21:12.400000+00:00


SOURCES UPDATE DATE

db:JVNDBid:JVNDB-2025-009973date:2025-07-28T00:14:00
db:NVDid:CVE-2025-21427date:2025-08-11T15:06:17.607

SOURCES RELEASE DATE

db:JVNDBid:JVNDB-2025-009973date:2025-07-28T00:00:00
db:NVDid:CVE-2025-21427date:2025-07-08T13:15:29.533