EUVD-2025-20485
2025-07-08
[email protected]
9.1
CVSS 3.1
Share
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None
Lifecycle Timeline
3
Analysis Generated
Mar 16, 2026 - 04:21 vuln.today
EUVD ID Assigned
Mar 16, 2026 - 04:21 euvd
EUVD-2025-20485
CVE Published
Jul 08, 2025 - 13:15 nvd
CRITICAL 9.1
Tags
Authentication Bypass
Snapdragon 480 5g Mobile Firmware
Wcd9375 Firmware
Sdx61 Firmware
Qca6584au Firmware
Qcn6024 Firmware
Qep8111 Firmware
Fastconnect 6700 Firmware
Sm4635 Firmware
Qca6391 Firmware
Qca6696 Firmware
Sm8635 Firmware
Qcc710 Firmware
Snapdragon X75 5g Modem Rf Firmware
Wcd9380 Firmware
Snapdragon 695 5g Mobile Firmware
Wcn7881 Firmware
Sm8635p Firmware
Wsa8835 Firmware
Snapdragon X35 5g Modem Rf Firmware
Qcm8550 Firmware
Snapdragon 8 Gen 1 Mobile Firmware
Sm6650p Firmware
Sdx80m Firmware
Snapdragon 8 Gen 3 Mobile Firmware
Qca6688aq Firmware
Qcn9024 Firmware
Wcn3980 Firmware
Wsa8810 Firmware
Snapdragon 4 Gen 1 Mobile Firmware
Qcm6490 Firmware
Qca6574a Firmware
Wcn6450 Firmware
Qcn9012 Firmware
Qca6698aq Firmware
Wcd9385 Firmware
Wcd9395 Firmware
Snapdragon Auto 5g Modem Rf Gen 2 Firmware
Sm6650 Firmware
Qca6595au Firmware
Qcn6224 Firmware
Sm8750p Firmware
Wsa8832 Firmware
Qcs5430 Firmware
Wsa8815 Firmware
Wcd9370 Firmware
Qcs6490 Firmware
Qcs8550 Firmware
Wcn7880 Firmware
Qfw7114 Firmware
Wcd9378 Firmware
Qcn9011 Firmware
Wcd9360 Firmware
Sd 8 Gen1 5g Firmware
Ar8035 Firmware
Snapdragon 778g 5g Mobile Firmware
Wsa8845 Firmware
Wcn3950 Firmware
Qca6698au Firmware
Fastconnect 6900 Firmware
Qcm5430 Firmware
Qcm4490 Firmware
Wsa8845h Firmware
Sw5100 Firmware
Wcn7861 Firmware
Sm7635 Firmware
Wcd9340 Firmware
Wsa8830 Firmware
Sg8275p Firmware
Sw5100p Firmware
Snapdragon Auto 5g Modem Rf Firmware
Qcs4490 Firmware
Wcn6650 Firmware
Sm7675 Firmware
Qca6797aq Firmware
Sm7675p Firmware
Wsa8840 Firmware
Wcd9390 Firmware
Sm7325p Firmware
Snapdragon 782g Mobile Firmware
Wcn6755 Firmware
Sm8750 Firmware
Snapdragon X32 5g Modem Rf Firmware
Qcn6274 Firmware
Fastconnect 7800 Firmware
Snapdragon X62 5g Modem Rf Firmware
Sm6370 Firmware
Sm8650q Firmware
Sm7635p Firmware
Fastconnect 6200 Firmware
Snapdragon 888 5g Mobile Firmware
Qfw7124 Firmware
Qca6574au Firmware
Qca6678aq Firmware
Video Collaboration Vc3 Platform Firmware
Sdx55 Firmware
Qca8337 Firmware
Snapdragon X72 5g Modem Rf Firmware
Wcn7860 Firmware
Qca6174a Firmware
Qca8081 Firmware
Snapdragon X65 5g Modem Rf Firmware
Wcn3988 Firmware
Description
Cryptographic issue occurs due to use of insecure connection method while downloading.
Analysis
Cryptographic issue occurs due to use of insecure connection method while downloading.
Technical Context
An authentication bypass vulnerability allows attackers to circumvent login mechanisms and gain unauthorized access without valid credentials. This vulnerability is classified as Improper Authentication (CWE-287).
Affected Products
Affected products: Qualcomm Ar8035 Firmware -, Qualcomm Fastconnect 6200 Firmware -, Qualcomm Fastconnect 6700 Firmware -, Qualcomm Fastconnect 6900 Firmware -, Qualcomm Fastconnect 7800 Firmware -
Remediation
Implement robust authentication mechanisms. Use multi-factor authentication. Review authentication logic for bypass conditions. Remove default credentials.
Priority Score
46
Low
Medium
High
Critical
KEV: 0
EPSS: +0.0
CVSS: +46
POC: 0
Share
External POC / Exploit Code
Leaving vuln.today
Destination URL
POC code from unknown sources may be malicious, contain backdoors, or be fake.
Always review and test exploit code in a safe, isolated environment (VM/sandbox).
Verify the source reputation and cross-reference with known databases (Exploit-DB, GitHub Security).