CVE-2025-21487

high-risk

Published 2025-09-24

Information disclosure while decoding RTP packet received by UE from the network, when payload length mentioned is greater than the available buffer length.

Do I need to act?

0.05% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.2/10 High

NETWORK / LOW complexity

Affected Products (20)

Apq8017 Firmware

Apq8064Au Firmware

Aqt1000 Firmware

Fastconnect 6200 Firmware

Fastconnect 6700 Firmware

Snapdragon 460 Mobile Platform Firmware

Snapdragon 480 5G Mobile Platform Firmware

Snapdragon 480\+ 5G Mobile Platform \(Sm4350-Ac\) Firmware

Snapdragon 625 Mobile Platform Firmware

Snapdragon 626 Mobile Platform Firmware

Snapdragon 630 Mobile Platform Firmware

Snapdragon 632 Mobile Platform Firmware

Snapdragon 636 Mobile Platform Firmware

Snapdragon 660 Mobile Platform Firmware

Snapdragon 662 Mobile Platform Firmware

Snapdragon 670 Mobile Platform Firmware

Snapdragon 675 Mobile Platform Firmware

Snapdragon 678 Mobile Platform \(Sm6150-Ac\) Firmware

Snapdragon 680 4G Mobile Platform Firmware

Snapdragon 685 4G Mobile Platform \(Sm6225-Ad\) Firmware

Affected Vendors

Qualcomm

References (1)

Vendor Advisory https://docs.qualcomm.com/product/publicresources/securitybulletin/september-202...

/ 100

high-risk

Severity 28/34 · Critical

Exploitability 0/34 · Minimal

Exposure 33/34 · Critical