CVE-2025-21457

Medium CVSS: 6.1

Information disclosure while opening a fastrpc session when domain is not sanitized.

Vendor

Product

CWE

Yayın Tarihi

2025-08-06 08:15:27

Güncelleme

2025-08-19 13:21:46

Source Identifier

product-security@qualcomm.com

KEV Date Added

CWE-126 Ar8035 Firmware MEDIUM Qualcomm 2025

https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html

High

CVE-2026-21385

Memory corruption while using alignments for memory allocation.

High

CVE-2025-59600

Memory Corruption when adding user-supplied data without checking available buffer space.

High

CVE-2025-59603

Memory Corruption when processing invalid user address with nonstandard buffer address.

High

CVE-2025-47385

Memory Corruption when accessing trusted execution environment without proper privilege check.

High

CVE-2025-47386

Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.

High

CVE-2025-47381

Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.