CVE-2025-21426

| EUVD-2025-20493 MEDIUM
2025-07-08 [email protected]
6.6
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
High
Availability
Low

Lifecycle Timeline

4
EUVD ID Assigned
Mar 16, 2026 - 04:21 euvd
EUVD-2025-20493
Analysis Generated
Mar 16, 2026 - 04:21 vuln.today
Patch Released
Mar 16, 2026 - 04:21 nvd
Patch available
CVE Published
Jul 08, 2025 - 13:15 nvd
MEDIUM 6.6

Tags

Buffer Overflow Wsa8832 Firmware Wsa8835 Firmware Snapdragon Ar1 Gen 1 Platform Firmware Ssg2115p Firmware Wsa8830 Firmware Ssg2125p Firmware Wcd9380 Firmware Wcd9385 Firmware Sxr1230p Firmware Fastconnect 7800 Firmware

Description

Memory corruption while processing camera TPG write request.

Analysis

Memory corruption while processing camera TPG write request.

Technical Context

A buffer overflow occurs when data written to a buffer exceeds its allocated size, potentially overwriting adjacent memory and corrupting program state. This vulnerability is classified as Classic Buffer Overflow (CWE-120).

Affected Products

Affected products: Qualcomm Fastconnect 7800 Firmware -, Qualcomm Snapdragon Ar1 Gen 1 Platform Firmware -, Qualcomm Ssg2115P Firmware -, Qualcomm Ssg2125P Firmware -, Qualcomm Sxr1230P Firmware -

Remediation

A vendor patch is available — apply it immediately. Use memory-safe languages or bounds-checked functions. Enable ASLR, DEP/NX, and stack canaries. Apply vendor patches promptly.

Priority Score

33
Low Medium High Critical
KEV: 0
EPSS: +0.0
CVSS: +33
POC: 0

Share

CVE-2025-21426 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy