What is the severity of CVE-2025-21469?

CVE-2025-21469 has a high severity due to potential memory corruption risks when processing image encoding.

How do I fix CVE-2025-21469?

To fix CVE-2025-21469, ensure that you update the affected Qualcomm firmware to the latest version provided by Qualcomm.

CVE-2025-21469 affects various Qualcomm FastConnect and QCM series firmware versions.

CVE-2025-21469 is caused by a memory corruption issue that occurs when the input buffer length is zero in IOCTL calls.

There are no specific mitigations available apart from applying the firmware update for CVE-2025-21469.

7.8

CWE

284 787

6/5/2025

9/5/2025

First published: Tue May 06 2025(Updated: )

Memory corruption while processing image encoding, when input buffer length is 0 in IOCTL call.

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
All of
Qualcomm FastConnect 6700 Firmware
Qualcomm Fastconnect 6700
All of
Qualcomm FastConnect 6900 Firmware
Qualcomm Fastconnect 6900 Firmware
All of
Qualcomm FastConnect 7800 Firmware
Qualcomm Fastconnect 7800 Firmware
All of
Qualcomm QCM5430
Qualcomm QCM5430 Firmware
All of
Qualcomm QCM6490
Qualcomm QCM6490 Firmware
All of
Qualcomm QCS5430 Firmware
Qualcomm QCS5430 Firmware
All of
Qualcomm QCS6490 Firmware
Qualcomm QCS6490 Firmware
All of
Qualcomm Video Collaboration VC3 Platform Firmware
Qualcomm Video Collaboration VC3 Platform
All of
Qualcomm SC8380XP Firmware
Qualcomm SC8380XP Firmware
All of
Qualcomm Snapdragon 7c+ Gen 3 Compute Firmware
Qualcomm Snapdragon 7c+ Gen 3 Compute
All of
Qualcomm SC8280XP Firmware
Qualcomm SC8280XP
All of
Qualcomm WCD9370 Firmware
Qualcomm WCD9370 Firmware
All of
Qualcomm WCD9375
Qualcomm WCD9375 Firmware
All of
Qualcomm WCD9380
Qualcomm WCD9380 Firmware
All of
Qualcomm WCD9385
Qualcomm WCD9385 Firmware
All of
Qualcomm WSA8830
Qualcomm WSA8830
All of
Qualcomm WSA8835
Qualcomm WSA8835 Firmware
All of
Qualcomm WSA8840 Firmware
Qualcomm WSA8840 Firmware
All of
Qualcomm WSA8845H
Qualcomm WSA8845 Firmware
All of
Qualcomm WSA8845 Firmware
Qualcomm WSA8845H Firmware

What is the severity of CVE-2025-21469?
CVE-2025-21469 has a high severity due to potential memory corruption risks when processing image encoding.
How do I fix CVE-2025-21469?
To fix CVE-2025-21469, ensure that you update the affected Qualcomm firmware to the latest version provided by Qualcomm.
What devices are affected by CVE-2025-21469?
CVE-2025-21469 affects various Qualcomm FastConnect and QCM series firmware versions.
What causes the vulnerability CVE-2025-21469?
CVE-2025-21469 is caused by a memory corruption issue that occurs when the input buffer length is zero in IOCTL calls.
Are there any available mitigations for CVE-2025-21469?
There are no specific mitigations available apart from applying the firmware update for CVE-2025-21469.

What is the severity of CVE-2025-21469?
CVE-2025-21469 has a high severity due to potential memory corruption risks when processing image encoding.
How do I fix CVE-2025-21469?
To fix CVE-2025-21469, ensure that you update the affected Qualcomm firmware to the latest version provided by Qualcomm.
What devices are affected by CVE-2025-21469?
CVE-2025-21469 affects various Qualcomm FastConnect and QCM series firmware versions.
What causes the vulnerability CVE-2025-21469?
CVE-2025-21469 is caused by a memory corruption issue that occurs when the input buffer length is zero in IOCTL calls.
Are there any available mitigations for CVE-2025-21469?
There are no specific mitigations available apart from applying the firmware update for CVE-2025-21469.