Skip to main content

Wcn3610 Firmware CVE-2025-21427

| EUVDEUVD-2025-20492 HIGH
Buffer Over-read (CWE-126)
2025-07-08 product-security@qualcomm.com
Information Disclosure Buffer Overflow Wcn3610 Firmware Qam8650p Firmware Video Collaboration Vc1 Platform Firmware Snapdragon 855 Mobile Firmware Sa4155p Firmware Qcm6490 Firmware Talynplus Firmware Sa8775p Firmware Snapdragon Xr2 5g Firmware Qca6320 Firmware Qcn9274 Firmware Snapdragon 460 Mobile Firmware Wcn3615 Firmware Qca6574 Firmware Sm4125 Firmware Sw5100 Firmware Snapdragon 4 Gen 2 Mobile Firmware Fastconnect 6800 Firmware Sa8195p Firmware Snapdragon 625 Mobile Firmware Wcd9370 Firmware Qcs615 Firmware Qca6430 Firmware Qcs6125 Firmware Sa6155p Firmware Qca6698aq Firmware Qca6335 Firmware Sd835 Firmware Qca6564a Firmware Wsa8845 Firmware Snapdragon 662 Mobile Firmware Qcs4490 Firmware Aqt1000 Firmware Snapdragon 8 Gen 3 Mobile Firmware Wcd9340 Firmware Snapdragon 710 Mobile Firmware Sa8255p Firmware Qca6564 Firmware Qca6574au Firmware Wcd9335 Firmware Qcs8300 Firmware Sa6145p Firmware Qcs410 Firmware Wsa8810 Firmware Snapdragon 845 Mobile Firmware Snapdragon 626 Mobile Firmware Smart Display 200 Platform Firmware Snapdragon X50 5g Modem Rf Firmware Sm6250 Firmware Qca6595au Firmware Wcn3680b Firmware Wcn3988 Firmware Wsa8840 Firmware Snapdragon 678 Mobile Firmware Sd865 5g Firmware Snapdragon 8 Gen 1 Mobile Firmware Msm8996au Firmware Sd660 Firmware Qcs5430 Firmware Qcm6125 Firmware Wcn3990 Firmware Wcd9375 Firmware Snapdragon 670 Mobile Firmware Snapdragon 675 Mobile Firmware Vision Intelligence 200 Firmware Snapdragon 778g 5g Mobile Firmware Qcs610 Firmware Vision Intelligence 300 Firmware Sa4150p Firmware Snapdragon 212 Mobile Firmware Wcn3660b Firmware Sa7255p Firmware Sxr2130 Firmware Fastconnect 6200 Firmware Snapdragon 480 5g Mobile Firmware Qcm8550 Firmware Sd855 Firmware Snapdragon 870 5g Mobile Firmware Vision Intelligence 400 Firmware Snapdragon 680 4g Mobile Firmware Fastconnect 6900 Firmware Qca6310 Firmware Sm7325p Firmware Sa8295p Firmware Snapdragon 730g Mobile Firmware Wsa8830 Firmware Qam8295p Firmware Qca6391 Firmware Sd 8 Gen1 5g Firmware Qam8255p Firmware 205 Mobile Firmware Sa8145p Firmware Sm7315 Firmware Wcd9380 Firmware Snapdragon 820 Automotive Firmware Qca6797aq Firmware Snapdragon 660 Mobile Firmware Sa8150p Firmware Wcn3980 Firmware Snapdragon 8 Gen 2 Mobile Firmware Qca6426 Firmware Wsa8845h Firmware Snapdragon 210 Firmware Sa9000p Firmware Qcm5430 Firmware Sa8650p Firmware Qcs8550 Firmware Qca6678aq Firmware Fastconnect 7800 Firmware Qca6574a Firmware Sdm429w Firmware Sdx55 Firmware Qam8775p Firmware Wsa8815 Firmware Snapdragon 429 Mobile Firmware Sa7775p Firmware Sg4150p Firmware Qca6420 Firmware Wcd9395 Firmware Snapdragon 730 Mobile Firmware Apq8064au Firmware Sa8620p Firmware 215 Mobile Firmware Wcn3620 Firmware Wcn3910 Firmware Wsa8832 Firmware Snapdragon 865 5g Mobile Firmware Sd626 Firmware Vision Intelligence 100 Firmware Sa8155 Firmware Snapdragon 860 Mobile Firmware Sd730 Firmware Qca6696 Firmware Snapdragon 695 5g Mobile Firmware Sa6150p Firmware Snapdragon 780g 5g Mobile Firmware Snapdragon 782g Mobile Firmware Wcn6740 Firmware Sd888 Firmware Qca6436 Firmware Wcd9385 Firmware Sd670 Firmware Snapdragon X55 5g Modem Rf Firmware Sxr1120 Firmware Snapdragon Xr1 Firmware Video Collaboration Vc3 Platform Firmware Robotics Rb3 Firmware Qcs9100 Firmware Qcs6490 Firmware Snapdragon 685 4g Mobile Firmware Sm6370 Firmware Snapdragon 4 Gen 1 Mobile Firmware Wsa8835 Firmware Snapdragon 732g Mobile Firmware Sa6155 Firmware Sa8155p Firmware Qca6564au Firmware Snapdragon 835 Mobile Pc Firmware Fastconnect 6700 Firmware Wcn3950 Firmware Wcd9341 Firmware Snapdragon 888 5g Mobile Firmware Wcd9326 Firmware Qca6688aq Firmware Wcd9390 Firmware Sw5100p Firmware Sm8550p Firmware Snapdragon 720g Mobile Firmware Qca6595 Firmware
8.2
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.2 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
Low

Lifecycle Timeline

3
EUVD ID Assigned
Mar 16, 2026 - 04:21 euvd
EUVD-2025-20492
Analysis Generated
Mar 16, 2026 - 04:21 vuln.today
CVE Published
Jul 08, 2025 - 13:15 nvd
HIGH 8.2

DescriptionCVE.org

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

Analysis

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

Technical ContextAI

Information disclosure occurs when an application inadvertently reveals sensitive data to unauthorized actors through error messages, logs, or improper access controls. This vulnerability is classified as Buffer Over-read (CWE-126).

RemediationAI

Implement proper access controls. Sanitize error messages in production. Review logging practices to avoid capturing sensitive data.

CVE-2024-45552 HIGH
8.2 Apr 07

Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t

CVE-2024-53026 HIGH
8.2 Jun 03

CVE-2024-53026 is an information disclosure vulnerability in IMS (IP Multimedia Subsystem) implementations affecting VoL

CVE-2024-53021 HIGH
8.2 Jun 03

CVE-2024-53021 is an information disclosure vulnerability in RTCP (Real-time Transport Control Protocol) packet processi

CVE-2024-53020 HIGH
8.2 Jun 03

CVE-2024-53020 is an information disclosure vulnerability in RTP (Real-time Transport Protocol) packet processing that o

CVE-2025-21453 HIGH
7.8 May 06

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential f

CVE-2024-43066 HIGH
7.8 Apr 07

Memory corruption while handling file descriptor during listener registration/de-registration. Rated high severity (CVSS

CVE-2024-49847 HIGH
7.5 May 06

Transient DOS while processing of a registration acceptance OTA due to incorrect ciphering key data IE. Rated high sever

CVE-2025-21430 HIGH
7.5 Apr 07

Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session. Rated high se

CVE-2025-21429 HIGH
7.5 Apr 07

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request. Rated high severity (CVSS 7.5

CVE-2025-21428 HIGH
7.5 Apr 07

Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSp

CVE-2024-53027 HIGH
7.5 Mar 03

Transient DOS may occur while processing the country IE. Rated high severity (CVSS 7.5), this vulnerability is remotely

CVE-2025-21433 MEDIUM
6.2 Jul 08

Transient DOS when importing a PKCS#8-encoded RSA private key with a zero-sized modulus.

Share

CVE-2025-21427 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy