Qcs8300 Firmware
CVE-2025-21434
HIGH
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
2DescriptionCVE.org
Transient DOS may occur while parsing EHT operation IE or EHT capability IE.
AnalysisAI
Transient DOS may occur while parsing EHT operation IE or EHT capability IE. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-126. Transient DOS may occur while parsing EHT operation IE or EHT capability IE. Affected products include: Qualcomm Qcs8300 Firmware, Qualcomm Qcs8550 Firmware, Qualcomm Qcs9100 Firmware, Qualcomm Qfw7114 Firmware, Qualcomm Qfw7124 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Qcs8300 Firmware
View allCVE-2024-53026 is an information disclosure vulnerability in IMS (IP Multimedia Subsystem) implementations affecting VoL
CVE-2024-53021 is an information disclosure vulnerability in RTCP (Real-time Transport Control Protocol) packet processi
CVE-2024-53020 is an information disclosure vulnerability in RTP (Real-time Transport Protocol) packet processing that o
Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to w
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential f
Memory corruption during the FRS UDS generation process. Rated high severity (CVSS 7.8), this vulnerability is low attac
Memory corruption while triggering commands in the PlayReady Trusted application. Rated high severity (CVSS 7.8), this v
Memory corruption during memory assignment to headless peripheral VM due to incorrect error code handling. Rated high se
Memory corruption while reading secure file. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity
Memory corruption during memory mapping into protected VM address space due to incorrect API restrictions. Rated high se
Memory corruption in display driver while detaching a device. Rated high severity (CVSS 7.8), this vulnerability is low
Same weakness CWE-126 – Buffer Over-read
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today