Qca4024 Firmware
CVE-2025-21465
MEDIUM
Severity by source
AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Lifecycle Timeline
2DescriptionCVE.org
Information disclosure while processing the hash segment in an MBN file.
AnalysisAI
Information disclosure while processing the hash segment in an MBN file. Rated medium severity (CVSS 6.5), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified as Out-of-bounds Read (CWE-125), which allows attackers to read data from memory outside the intended buffer boundaries. Information disclosure while processing the hash segment in an MBN file. Affected products include: Qualcomm 315 5G Iot Modem Firmware, Qualcomm 9205 Lte Modem Firmware, Qualcomm Aqt1000 Firmware, Qualcomm Ar8031 Firmware, Qualcomm Ar8035 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Validate array indices and buffer lengths. Use memory-safe languages. Enable AddressSanitizer during testing.
More in Qca4024 Firmware
View allMemory corruption while processing command in Glink linux. Rated high severity (CVSS 7.8), this vulnerability is low att
Memory corruption whhile handling the subsystem failure memory during the parsing of video packets received from the vid
Memory corruption while processing manipulated payload in video firmware.
Memory corruption while processing video packets received from video firmware.
Memory corruption while deinitializing a HDCP session. [CVSS 7.8 HIGH]
Transient DOS may occur while parsing SSID in action frames. Rated high severity (CVSS 7.5), this vulnerability is remot
Transient DOS may occur while parsing extended IE in beacon. Rated high severity (CVSS 7.5), this vulnerability is remot
Transient denial-of-service vulnerability in wireless beacon frame processing that occurs when a device receives a malfo
Transient DOS may occur when processing vendor-specific information elements while parsing a WLAN frame for BTM requests
Transient DOS while parsing the EPTM test control message to get the test pattern. Rated high severity (CVSS 7.5), this
Transient DOS while handling beacon frames with invalid IE header length.
Information disclosure while processing a firmware event. [CVSS 6.1 MEDIUM]
Same weakness CWE-125 – Out-of-bounds Read
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today