Memory Corruption Vulnerability in Qualcomm Product
CVE-2025-21466

7.8HIGH

Key Information:

Vendor

Qualcomm
Status
Snapdragon
Vendor
CVE Published:
8 July 2025

What is CVE-2025-21466?

A memory corruption flaw exists in Qualcomm software when handling a private escape command in an event trigger. This vulnerability could potentially enable unauthorized access or manipulation of sensitive data, posing significant risks to data integrity and system security. Users are encouraged to update to the latest versions to mitigate potential exploitation.

Affected Version(s)

Snapdragon Snapdragon Compute AQT1000

Snapdragon Snapdragon Compute FastConnect 6200

Snapdragon Snapdragon Compute FastConnect 6700

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-21466 : Memory Corruption Vulnerability in Qualcomm Product