Sg8275p Firmware
CVE-2025-21453
HIGH
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
3DescriptionCVE.org
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur.
AnalysisAI
Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.
Technical ContextAI
This vulnerability is classified as Use After Free (CWE-416), which allows attackers to access freed memory to execute arbitrary code or crash the application. Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur. Affected products include: Qualcomm 315 5G Iot Modem Firmware, Qualcomm Apq8017 Firmware, Qualcomm Aqt1000 Firmware, Qualcomm Ar8035 Firmware, Qualcomm Csra6620 Firmware.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Use smart pointers or garbage-collected languages. Set pointers to NULL after freeing. Enable memory sanitizers.
More in Sg8275p Firmware
View allCryptographic issue occurs due to use of insecure connection method while downloading.
Information disclosure may occur due to improper permission and access controls to Video Analytics engine. Rated high se
Memory corruption while reading response from FW, when buffer size is changed by FW while driver is using this size to w
Memory corruption in display driver while detaching a device. Rated high severity (CVSS 7.8), this vulnerability is low
Memory corruption may occur while validating ports and channels in Audio driver. Rated high severity (CVSS 7.8), this vu
Memory corruption while calling the NPU driver APIs concurrently. Rated high severity (CVSS 7.8), this vulnerability is
Memory corruption vulnerability in Qualcomm's Virtual Machine (VM) attachment mechanism that occurs when the Host Linux
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the vid
Memory corruption while processing data packets in diag received from Unix clients.
Memory corruption while processing video packets received from video firmware.
CVE-2025-21432 is a security vulnerability (CVSS 7.8). High severity vulnerability requiring prompt remediation.
Memory corruption while processing identity credential operations in the trusted application. [CVSS 7.8 HIGH]
Same weakness CWE-416 – Use After Free
View allSame technique Memory Corruption
View allShare
External POC / Exploit Code
Leaving vuln.today