CVE-2025-21448

HIGH

Qualcomm Qcn9070 Firmware - Buffer Over-read

Title source: rule

Transient DOS may occur while parsing SSID in action frames.

CVSS v3 7.5

EPSS 0.0045

EPSS Percentile 63.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

CWE

CWE-126

Status published

Products (50)

qualcomm/315_5g_iot_modem_firmware

qualcomm/aqt1000_firmware

qualcomm/ar8035_firmware

qualcomm/ar9380_firmware

qualcomm/csr8811_firmware

qualcomm/csrb31024_firmware

qualcomm/fastconnect_6200_firmware

qualcomm/fastconnect_6700_firmware

qualcomm/fastconnect_6800_firmware

qualcomm/fastconnect_6900_firmware

... and 40 more

Published Apr 07, 2025

Tracked Since Feb 18, 2026