CVE-2025-21428

Summary

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.Snapdragon9206 LTE Modemaffected
Qualcomm, Inc.SnapdragonAPQ8017affected
Qualcomm, Inc.SnapdragonAR8031affected
Qualcomm, Inc.SnapdragonC-V2X 9150affected
Qualcomm, Inc.SnapdragonCSRA6620affected
Qualcomm, Inc.SnapdragonCSRA6640affected
Qualcomm, Inc.SnapdragonFastConnect 6200affected
Qualcomm, Inc.SnapdragonFastConnect 6900affected
Qualcomm, Inc.SnapdragonMDM9250affected
Qualcomm, Inc.SnapdragonMDM9628affected
Qualcomm, Inc.SnapdragonMDM9640affected
Qualcomm, Inc.SnapdragonMDM9650affected
Qualcomm, Inc.SnapdragonMSM8996AUaffected
Qualcomm, Inc.SnapdragonQCA6174affected
Qualcomm, Inc.SnapdragonQCA6174Aaffected
Qualcomm, Inc.SnapdragonQCA6175Aaffected
Qualcomm, Inc.SnapdragonQCA6554Aaffected
Qualcomm, Inc.SnapdragonQCA6564Aaffected
Qualcomm, Inc.SnapdragonQCA6564AUaffected
Qualcomm, Inc.SnapdragonQCA6574affected
Qualcomm, Inc.SnapdragonQCA6574Aaffected
Qualcomm, Inc.SnapdragonQCA6574AUaffected
Qualcomm, Inc.SnapdragonQCA6584affected
Qualcomm, Inc.SnapdragonQCA6584AUaffected
Qualcomm, Inc.SnapdragonQCA6595affected
Qualcomm, Inc.SnapdragonQCA6595AUaffected
Qualcomm, Inc.SnapdragonQCA6696affected
Qualcomm, Inc.SnapdragonQCA9367affected
Qualcomm, Inc.SnapdragonQCA9377affected
Qualcomm, Inc.SnapdragonQCA9379affected
Qualcomm, Inc.SnapdragonQCM2150affected
Qualcomm, Inc.SnapdragonQEP8111affected
Qualcomm, Inc.SnapdragonQualcomm 205 Mobile Platformaffected
Qualcomm, Inc.SnapdragonQualcomm 215 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSA2150Paffected
Qualcomm, Inc.SnapdragonSD626affected
Qualcomm, Inc.SnapdragonSDM429Waffected
Qualcomm, Inc.SnapdragonSmart Audio 200 Platformaffected
Qualcomm, Inc.SnapdragonSmart Audio 400 Platformaffected
Qualcomm, Inc.SnapdragonSmart Display 200 Platform (APQ5053-AA)affected
Qualcomm, Inc.SnapdragonSnapdragon 1200 Wearable Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 210 Processoraffected
Qualcomm, Inc.SnapdragonSnapdragon 212 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 425 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 429 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 439 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 625 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 626 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 632 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 820 Automotive Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon Auto 5G Modem-RFaffected
Qualcomm, Inc.SnapdragonSnapdragon X12 LTE Modemaffected
Qualcomm, Inc.SnapdragonSnapdragon X35 5G Modem-RF Systemaffected
Qualcomm, Inc.SnapdragonSnapdragon X5 LTE Modemaffected
Qualcomm, Inc.SnapdragonVision Intelligence 100 Platform (APQ8053-AA)affected
Qualcomm, Inc.SnapdragonVision Intelligence 200 Platform (APQ8053-AC)affected
Qualcomm, Inc.SnapdragonWCD9326affected
Qualcomm, Inc.SnapdragonWCD9330affected
Qualcomm, Inc.SnapdragonWCD9335affected
Qualcomm, Inc.SnapdragonWCD9340affected
Qualcomm, Inc.SnapdragonWCN3610affected
Qualcomm, Inc.SnapdragonWCN3615affected
Qualcomm, Inc.SnapdragonWCN3620affected
Qualcomm, Inc.SnapdragonWCN3660Baffected
Qualcomm, Inc.SnapdragonWCN3680affected
Qualcomm, Inc.SnapdragonWCN3680Baffected
Qualcomm, Inc.SnapdragonWCN3980affected
Qualcomm, Inc.SnapdragonWSA8810affected
Qualcomm, Inc.SnapdragonWSA8815affected

Weaknesses

  • CWE-126: CWE-126 Buffer Over-read

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References