Memory Corruption Vulnerability in Qualcomm WLAN Driver
CVE-2025-21440

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 7 April 2025

Summary

This vulnerability involves a memory corruption issue triggered when an IOCTL call is made from user space to write board data to the WLAN driver. Exploitation of this flaw may lead to instability in the affected system, potentially allowing unauthorized access or execution of arbitrary code. It is essential for users running the Qualcomm WLAN driver to apply the latest patches and updates to mitigate this risk.

Affected Version(s)

Snapdragon Snapdragon Compute AQT1000

Snapdragon Snapdragon Compute FastConnect 6200

Snapdragon Snapdragon Compute FastConnect 6700

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 7, 2025
Vulnerability Reserved
Dec 18, 2024