CVE-2025-21449
HIGHQualcomm Snapdragon and Smart Audio Platform Firmware - Denial of Service via Malformed SSID IE Length Field
Title source: llmDescription
Transient DOS may occur while processing malformed length field in SSID IEs.
References (1)
Core 1
Core References
Scores
CVSS v3
7.5
EPSS
0.0020
EPSS Percentile
9.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-125
CWE-126
Status
published
Products (50)
qualcomm/315_5g_iot_firmware
qualcomm/apq8017_firmware
qualcomm/apq8064au_firmware
qualcomm/aqt1000_firmware
qualcomm/ar8031_firmware
qualcomm/ar8035_firmware
qualcomm/ar9380_firmware
qualcomm/csr8811_firmware
qualcomm/csra6620_firmware
qualcomm/csra6640_firmware
... and 40 more
Published
Jul 08, 2025
Tracked Since
Feb 18, 2026