CVE-2025-21437

HIGH 7.8

Use After Free in Automotive Linux OS

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

Memory corruption while processing memory map or unmap IOCTL operations simultaneously.

CWE	CWE-416
Vendor	qualcomm, inc.
Product	snapdragon
Published	Apr 7, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for qualcomm, inc. snapdragon

Be the first to know when new high vulnerabilities affecting qualcomm, inc. snapdragon are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Qualcomm, Inc. / Snapdragon

QAM8255P QAM8295P QAM8620P QAM8650P QAM8775P QAMSRV1H QAMSRV1M QCA6574 QCA6574A QCA6574AU QCA6595 QCA6595AU QCA6688AQ QCA6696 QCA6698AQ QCA6797AQ SA6155P SA7255P SA7775P SA8155P SA8195P SA8255P SA8295P SA8620P SA8650P SA8770P SA8775P SA9000P SRV1H SRV1L SRV1M

References

NVD ↗ CVE.org ↗ EPSS Data ↗

docs.qualcomm.com: https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html