CVE-2025-21480 is a high severity vulnerability with a CVSS score of 8.6. Exploits are available; patches have been released and should be applied urgently. This is classified as a zero-day vulnerability.
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
Lower probability of exploitation
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
Multiple Qualcomm chipsets contain an incorrect authorization vulnerability. This vulnerability allows for memory corruption due to unauthorized command execution in GPU micronode while executing specific sequence of commands.
| Vendor | Product |
|---|---|
| Qualcomm | Sm6650 Firmware |
| Qualcomm | Snapdragon 720g Mobile Platform Firmware |
| Qualcomm | Snapdragon 855\+\/860 Mobile Platform \(sm8150 Ac\) |
| Qualcomm | Qcs4490 Firmware |
| Qualcomm | Wcn6650 Firmware |
| Qualcomm | Wcd9341 Firmware |
| Qualcomm | Snapdragon 685 4g Mobile Platform \(sm6225 Ad\) |
| Qualcomm | Snapdragon 720g Mobile Platform |
| Qualcomm | Snapdragon 8\+ Gen 2 Mobile Platform Firmware |
| Qualcomm | Sxr2230p |
And 142 more...