#VU114624 Reachable Assertion in Qualcomm products - CVE-2025-21452

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Vulnerabilities #VU114624

#VU114624 Reachable Assertion in Qualcomm products - CVE-2025-21452

Published: September 1, 2025


Vulnerability identifier: #VU114624
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
CVE-ID: CVE-2025-21452
CWE-ID: CWE-617
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vulnerable software:
315 5G IoT Modem
AR8035
FastConnect 6200
FastConnect 6700
FastConnect 6800
FastConnect 6900
FSM10055
QCA6391
QCA6421
QCA6426
QCA6431
QCA6436
QCA6574A
QCA6595AU
QCA6696
QCA6698AQ
QCA8337
QCM5430
QCM6490
QCS5430
QCS6490
QEP8111
Qualcomm Video Collaboration VC3 Platform
SD865 5G
SDX57M
SM6370
SM6650
SM7250P
SM7325P
SM7635
Snapdragon 4 Gen 1 Mobile Platform
Snapdragon 480 5G Mobile Platform
Snapdragon 480+ 5G Mobile Platform (SM4350-AC)
Snapdragon 690 5G Mobile Platform
Snapdragon 695 5G Mobile Platform
Snapdragon 765 5G Mobile Platform (SM7250-AA)
Snapdragon 765G 5G Mobile Platform (SM7250-AB)
Snapdragon 768G 5G Mobile Platform (SM7250-AC)
Snapdragon 778G 5G Mobile Platform
Snapdragon 778G+ 5G Mobile Platform (SM7325-AE)
Snapdragon 780G 5G Mobile Platform
Snapdragon 782G Mobile Platform (SM7325-AF)
Snapdragon 7c+ Gen 3 Compute
Snapdragon 855 Mobile Platform
Snapdragon 855+/860 Mobile Platform (SM8150-AC)
Snapdragon 865 5G Mobile Platform
Snapdragon 865+ 5G Mobile Platform (SM8250-AB)
Snapdragon 870 5G Mobile Platform (SM8250-AC)
Snapdragon 888 5G Mobile Platform
Snapdragon 888+ 5G Mobile Platform (SM8350-AC)
Snapdragon Auto 5G Modem-RF
Snapdragon X35 5G Modem-RF System
Snapdragon X55 5G Modem-RF System
Snapdragon XR2 5G Platform
WCD9340
WCD9341
WCD9360
WCD9370
WCD9375
WCD9378
WCD9380
WCD9385
WCD9395
WCN3988
WCN6450
WCN6650
WCN6740
WCN6755
WCN7861
WCN7881
WSA8810
WSA8815
WSA8830
WSA8835
QCA6174A
QCA6574AU
SD855
SDX55
SXR2130
WSA8832
Software vendor:
Qualcomm

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in Modem. A remote attacker can perform a denial of service (DoS) attack.


Remediation

Install security update from vendor's website.

External links