CVE-2025-21479 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.6 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
qualcomm	CNA	8.6 HIGH	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 75%

Vendor	Product	Version
qualcomm	aqt1000_firmware	-
qualcomm	fastconnect_6200_firmware	-
qualcomm	fastconnect_6700_firmware	-
qualcomm	fastconnect_6900_firmware	-
qualcomm	fastconnect_7800_firmware	-
qualcomm	fastconnect_6800_firmware	-
qualcomm	qca6391_firmware	-
qualcomm	qcm4490_firmware	-
qualcomm	qcs4490_firmware	-
qualcomm	sd855_firmware	-
qualcomm	sm4635_firmware	-
qualcomm	sm6250_firmware	-
qualcomm	sm6650_firmware	-
qualcomm	sm6650p_firmware	-
qualcomm	sm7325p_firmware	-
qualcomm	sm7635_firmware	-
qualcomm	sm7675_firmware	-
qualcomm	sm7675p_firmware	-
qualcomm	sm8550p_firmware	-
qualcomm	sm8635_firmware	-
qualcomm	sm8635p_firmware	-
qualcomm	sm8650q_firmware	-
qualcomm	snapdragon_4_gen_1_mobile_platform_firmware	-
qualcomm	snapdragon_460_mobile_platform_firmware	-
qualcomm	snapdragon_480_5g_mobile_platform_firmware	-
qualcomm	snapdragon_480\+_5g_mobile_platform_\(sm4350-ac\)_firmware	-
qualcomm	snapdragon_662_mobile_platform_firmware	-
qualcomm	snapdragon_680_4g_mobile_platform_firmware	-
qualcomm	snapdragon_685_4g_mobile_platform_\(sm6225-ad\)_firmware	-
qualcomm	snapdragon_690_5g_mobile_platform_firmware	-
qualcomm	snapdragon_695_5g_mobile_platform_firmware	-
qualcomm	snapdragon_720g_mobile_platform_firmware	-
qualcomm	snapdragon_778g_5g_mobile_platform_firmware	-
qualcomm	snapdragon_778g\+_5g_mobile_platform_\(sm7325-ae\)_firmware	-
qualcomm	snapdragon_782g_mobile_platform_\(sm7325-af\)_firmware	-
qualcomm	snapdragon_7c\+_gen_3_compute_firmware	-
qualcomm	snapdragon_8_gen_2_mobile_platform_firmware	-
qualcomm	snapdragon_8_gen_3_mobile_platform_firmware	-
qualcomm	snapdragon_8\+_gen_2_mobile_platform_firmware	-
qualcomm	snapdragon_855_mobile_platform_firmware	-
qualcomm	snapdragon_855\+\/860_mobile_platform_\(sm8150-ac\)_firmware	-
qualcomm	snapdragon_865_5g_mobile_platform_firmware	-
qualcomm	snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmware	-
qualcomm	snapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmware	-
qualcomm	snapdragon_888_5g_mobile_platform_firmware	-
qualcomm	snapdragon_888\+_5g_mobile_platform_\(sm8350-ac\)_firmware	-
qualcomm	snapdragon_ar1_gen_1_firmware	-
qualcomm	snapdragon_ar1_gen_1_platform_\"luna1\"_firmware	-
qualcomm	snapdragon_x55_5g_modem-rf_system_firmware	-
qualcomm	sxr2230p_firmware	-
qualcomm	sxr2250p_firmware	-
qualcomm	sxr2330p_firmware	-
qualcomm	wcd9395_firmware	-
qualcomm	wcn3950_firmware	-
qualcomm	wcn3988_firmware	-
qualcomm	wcn6450_firmware	-
qualcomm	wcn6650_firmware	-
qualcomm	wcn6755_firmware	-
qualcomm	wcn7861_firmware	-
qualcomm	wcn7881_firmware	-
qualcomm	wsa8810_firmware	-
qualcomm	wsa8815_firmware	-
qualcomm	wsa8830_firmware	-
qualcomm	wsa8835_firmware	-
qualcomm	wsa8840_firmware	-
qualcomm	wsa8845_firmware	-
qualcomm	wsa8845h_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-863 - Incorrect Authorization
The software performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html