CVE-2025-21427

8.2 HIGH

📋 TL;DR

This vulnerability allows information disclosure when a User Equipment (UE) device receives RTP packets from the network. It affects mobile devices with Qualcomm chipsets that process RTP traffic. Attackers could potentially read sensitive data from memory.

💻 Affected Systems

Products:

• Qualcomm chipsets with RTP processing capabilities

Versions: Specific versions not detailed in reference; check Qualcomm July 2025 bulletin

Operating Systems: Android and other mobile OS using affected Qualcomm components

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with Qualcomm chipsets that process RTP traffic; exact models require checking Qualcomm advisory

📦 What is this software?

205 Mobile Firmware by Qualcomm

View all CVEs affecting 205 Mobile Firmware →

215 Mobile Firmware by Qualcomm

View all CVEs affecting 215 Mobile Firmware →

Apq8064au Firmware by Qualcomm

View all CVEs affecting Apq8064au Firmware →

Aqt1000 Firmware by Qualcomm

View all CVEs affecting Aqt1000 Firmware →

Fastconnect 6200 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6200 Firmware →

Fastconnect 6700 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6700 Firmware →

Fastconnect 6800 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6800 Firmware →

Fastconnect 6900 Firmware by Qualcomm

View all CVEs affecting Fastconnect 6900 Firmware →

Fastconnect 7800 Firmware by Qualcomm

View all CVEs affecting Fastconnect 7800 Firmware →

Msm8996au Firmware by Qualcomm

View all CVEs affecting Msm8996au Firmware →

Qam8255p Firmware by Qualcomm

View all CVEs affecting Qam8255p Firmware →

Qam8295p Firmware by Qualcomm

View all CVEs affecting Qam8295p Firmware →

Qam8650p Firmware by Qualcomm

View all CVEs affecting Qam8650p Firmware →

Qam8775p Firmware by Qualcomm

View all CVEs affecting Qam8775p Firmware →

Qca6310 Firmware by Qualcomm

View all CVEs affecting Qca6310 Firmware →

Qca6320 Firmware by Qualcomm

View all CVEs affecting Qca6320 Firmware →

Qca6335 Firmware by Qualcomm

View all CVEs affecting Qca6335 Firmware →

Qca6391 Firmware by Qualcomm

View all CVEs affecting Qca6391 Firmware →

Qca6420 Firmware by Qualcomm

View all CVEs affecting Qca6420 Firmware →

Qca6426 Firmware by Qualcomm

View all CVEs affecting Qca6426 Firmware →

Qca6430 Firmware by Qualcomm

View all CVEs affecting Qca6430 Firmware →

Qca6436 Firmware by Qualcomm

View all CVEs affecting Qca6436 Firmware →

Qca6564 Firmware by Qualcomm

View all CVEs affecting Qca6564 Firmware →

Qca6564a Firmware by Qualcomm

View all CVEs affecting Qca6564a Firmware →

Qca6564au Firmware by Qualcomm

View all CVEs affecting Qca6564au Firmware →

Qca6574 Firmware by Qualcomm

View all CVEs affecting Qca6574 Firmware →

Qca6574a Firmware by Qualcomm

View all CVEs affecting Qca6574a Firmware →

Qca6574au Firmware by Qualcomm

View all CVEs affecting Qca6574au Firmware →

Qca6595 Firmware by Qualcomm

View all CVEs affecting Qca6595 Firmware →

Qca6595au Firmware by Qualcomm

View all CVEs affecting Qca6595au Firmware →

Qca6678aq Firmware by Qualcomm

View all CVEs affecting Qca6678aq Firmware →

Qca6688aq Firmware by Qualcomm

View all CVEs affecting Qca6688aq Firmware →

Qca6696 Firmware by Qualcomm

View all CVEs affecting Qca6696 Firmware →

Qca6698aq Firmware by Qualcomm

View all CVEs affecting Qca6698aq Firmware →

Qca6797aq Firmware by Qualcomm

View all CVEs affecting Qca6797aq Firmware →

Qcm5430 Firmware by Qualcomm

View all CVEs affecting Qcm5430 Firmware →

Qcm6125 Firmware by Qualcomm

View all CVEs affecting Qcm6125 Firmware →

Qcm6490 Firmware by Qualcomm

View all CVEs affecting Qcm6490 Firmware →

Qcm8550 Firmware by Qualcomm

View all CVEs affecting Qcm8550 Firmware →

Qcn9274 Firmware by Qualcomm

View all CVEs affecting Qcn9274 Firmware →

Qcs410 Firmware by Qualcomm

View all CVEs affecting Qcs410 Firmware →

Qcs4490 Firmware by Qualcomm

View all CVEs affecting Qcs4490 Firmware →

Qcs5430 Firmware by Qualcomm

View all CVEs affecting Qcs5430 Firmware →

Qcs610 Firmware by Qualcomm

View all CVEs affecting Qcs610 Firmware →

Qcs6125 Firmware by Qualcomm

View all CVEs affecting Qcs6125 Firmware →

Qcs615 Firmware by Qualcomm

View all CVEs affecting Qcs615 Firmware →

Qcs6490 Firmware by Qualcomm

View all CVEs affecting Qcs6490 Firmware →

Qcs8300 Firmware by Qualcomm

View all CVEs affecting Qcs8300 Firmware →

Qcs8550 Firmware by Qualcomm

View all CVEs affecting Qcs8550 Firmware →

Qcs9100 Firmware by Qualcomm

View all CVEs affecting Qcs9100 Firmware →

Robotics Rb3 Firmware by Qualcomm

View all CVEs affecting Robotics Rb3 Firmware →

Sa4150p Firmware by Qualcomm

View all CVEs affecting Sa4150p Firmware →

Sa4150p Firmware by Qualcomm

View all CVEs affecting Sa4150p Firmware →

Sa4155p Firmware by Qualcomm

View all CVEs affecting Sa4155p Firmware →

Sa6145p Firmware by Qualcomm

View all CVEs affecting Sa6145p Firmware →

Sa6150p Firmware by Qualcomm

View all CVEs affecting Sa6150p Firmware →

Sa6155 Firmware by Qualcomm

View all CVEs affecting Sa6155 Firmware →

Sa6155p Firmware by Qualcomm

View all CVEs affecting Sa6155p Firmware →

Sa7255p Firmware by Qualcomm

View all CVEs affecting Sa7255p Firmware →

Sa7775p Firmware by Qualcomm

View all CVEs affecting Sa7775p Firmware →

Sa8145p Firmware by Qualcomm

View all CVEs affecting Sa8145p Firmware →

Sa8150p Firmware by Qualcomm

View all CVEs affecting Sa8150p Firmware →

Sa8155 Firmware by Qualcomm

View all CVEs affecting Sa8155 Firmware →

Sa8155p Firmware by Qualcomm

View all CVEs affecting Sa8155p Firmware →

Sa8195p Firmware by Qualcomm

View all CVEs affecting Sa8195p Firmware →

Sa8255p Firmware by Qualcomm

View all CVEs affecting Sa8255p Firmware →

Sa8295p Firmware by Qualcomm

View all CVEs affecting Sa8295p Firmware →

Sa8620p Firmware by Qualcomm

View all CVEs affecting Sa8620p Firmware →

Sa8650p Firmware by Qualcomm

View all CVEs affecting Sa8650p Firmware →

Sa8775p Firmware by Qualcomm

View all CVEs affecting Sa8775p Firmware →

Sa9000p Firmware by Qualcomm

View all CVEs affecting Sa9000p Firmware →

Sd 8 Gen1 5g Firmware by Qualcomm

View all CVEs affecting Sd 8 Gen1 5g Firmware →

Sd626 Firmware by Qualcomm

View all CVEs affecting Sd626 Firmware →

Sd660 Firmware by Qualcomm

View all CVEs affecting Sd660 Firmware →

Sd670 Firmware by Qualcomm

View all CVEs affecting Sd670 Firmware →

Sd730 Firmware by Qualcomm

View all CVEs affecting Sd730 Firmware →

Sd835 Firmware by Qualcomm

View all CVEs affecting Sd835 Firmware →

Sd855 Firmware by Qualcomm

View all CVEs affecting Sd855 Firmware →

Sd865 5g Firmware by Qualcomm

View all CVEs affecting Sd865 5g Firmware →

Sd888 Firmware by Qualcomm

View all CVEs affecting Sd888 Firmware →

Sdm429w Firmware by Qualcomm

View all CVEs affecting Sdm429w Firmware →

Sdx55 Firmware by Qualcomm

View all CVEs affecting Sdx55 Firmware →

Sg4150p Firmware by Qualcomm

View all CVEs affecting Sg4150p Firmware →

Sm4125 Firmware by Qualcomm

View all CVEs affecting Sm4125 Firmware →

Sm6250 Firmware by Qualcomm

View all CVEs affecting Sm6250 Firmware →

Sm6370 Firmware by Qualcomm

View all CVEs affecting Sm6370 Firmware →

Sm7315 Firmware by Qualcomm

View all CVEs affecting Sm7315 Firmware →

Sm7325p Firmware by Qualcomm

View all CVEs affecting Sm7325p Firmware →

Sm8550p Firmware by Qualcomm

View all CVEs affecting Sm8550p Firmware →

Smart Display 200 Platform Firmware by Qualcomm

View all CVEs affecting Smart Display 200 Platform Firmware →

Snapdragon 210 Firmware by Qualcomm

View all CVEs affecting Snapdragon 210 Firmware →

Snapdragon 212 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 212 Mobile Firmware →

Snapdragon 4 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 4 Gen 1 Mobile Firmware →

Snapdragon 4 Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 4 Gen 2 Mobile Firmware →

Snapdragon 429 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 429 Mobile Firmware →

Snapdragon 460 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 460 Mobile Firmware →

Snapdragon 480 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 480 5g Mobile Firmware →

Snapdragon 480 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 480 5g Mobile Firmware →

Snapdragon 625 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 625 Mobile Firmware →

Snapdragon 626 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 626 Mobile Firmware →

Snapdragon 660 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 660 Mobile Firmware →

Snapdragon 662 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 662 Mobile Firmware →

Snapdragon 670 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 670 Mobile Firmware →

Snapdragon 675 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 675 Mobile Firmware →

Snapdragon 678 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 678 Mobile Firmware →

Snapdragon 680 4g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 680 4g Mobile Firmware →

Snapdragon 685 4g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 685 4g Mobile Firmware →

Snapdragon 695 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 695 5g Mobile Firmware →

Snapdragon 710 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 710 Mobile Firmware →

Snapdragon 720g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 720g Mobile Firmware →

Snapdragon 730 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 730 Mobile Firmware →

Snapdragon 730g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 730g Mobile Firmware →

Snapdragon 732g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 732g Mobile Firmware →

Snapdragon 778g 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 778g 5g Mobile Firmware →

Snapdragon 778g 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 778g 5g Mobile Firmware →

Snapdragon 780g 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 780g 5g Mobile Firmware →

Snapdragon 782g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 782g Mobile Firmware →

Snapdragon 7c\+ Gen 3 Compute Firmware by Qualcomm

View all CVEs affecting Snapdragon 7c\+ Gen 3 Compute Firmware →

Snapdragon 8 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 1 Mobile Firmware →

Snapdragon 8 Gen 1 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 1 Mobile Firmware →

Snapdragon 8 Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 2 Mobile Firmware →

Snapdragon 8 Gen 2 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 2 Mobile Firmware →

Snapdragon 8 Gen 3 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 8 Gen 3 Mobile Firmware →

Snapdragon 820 Automotive Firmware by Qualcomm

View all CVEs affecting Snapdragon 820 Automotive Firmware →

Snapdragon 835 Mobile Pc Firmware by Qualcomm

View all CVEs affecting Snapdragon 835 Mobile Pc Firmware →

Snapdragon 845 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 845 Mobile Firmware →

Snapdragon 855 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 855 Mobile Firmware →

Snapdragon 855 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 855 Mobile Firmware →

Snapdragon 860 Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 860 Mobile Firmware →

Snapdragon 865 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 865 5g Mobile Firmware →

Snapdragon 865 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 865 5g Mobile Firmware →

Snapdragon 870 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 870 5g Mobile Firmware →

Snapdragon 888 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 888 5g Mobile Firmware →

Snapdragon 888 5g Mobile Firmware by Qualcomm

View all CVEs affecting Snapdragon 888 5g Mobile Firmware →

Snapdragon W5\+ Gen 1 Wearable Firmware by Qualcomm

View all CVEs affecting Snapdragon W5\+ Gen 1 Wearable Firmware →

Snapdragon X50 5g Modem Rf Firmware by Qualcomm

View all CVEs affecting Snapdragon X50 5g Modem Rf Firmware →

Snapdragon X55 5g Modem Rf Firmware by Qualcomm

View all CVEs affecting Snapdragon X55 5g Modem Rf Firmware →

Snapdragon Xr1 Firmware by Qualcomm

View all CVEs affecting Snapdragon Xr1 Firmware →

Snapdragon Xr2 5g Firmware by Qualcomm

View all CVEs affecting Snapdragon Xr2 5g Firmware →

Snapdragon Xr2\+ Gen 1 Firmware by Qualcomm

View all CVEs affecting Snapdragon Xr2\+ Gen 1 Firmware →

Sw5100 Firmware by Qualcomm

View all CVEs affecting Sw5100 Firmware →

Sw5100p Firmware by Qualcomm

View all CVEs affecting Sw5100p Firmware →

Sxr1120 Firmware by Qualcomm

View all CVEs affecting Sxr1120 Firmware →

Sxr2130 Firmware by Qualcomm

View all CVEs affecting Sxr2130 Firmware →

Talynplus Firmware by Qualcomm

View all CVEs affecting Talynplus Firmware →

Video Collaboration Vc1 Platform Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc1 Platform Firmware →

Video Collaboration Vc3 Platform Firmware by Qualcomm

View all CVEs affecting Video Collaboration Vc3 Platform Firmware →

Vision Intelligence 100 Firmware by Qualcomm

View all CVEs affecting Vision Intelligence 100 Firmware →

Vision Intelligence 200 Firmware by Qualcomm

View all CVEs affecting Vision Intelligence 200 Firmware →

Vision Intelligence 300 Firmware by Qualcomm

View all CVEs affecting Vision Intelligence 300 Firmware →

Vision Intelligence 400 Firmware by Qualcomm

View all CVEs affecting Vision Intelligence 400 Firmware →

Wcd9326 Firmware by Qualcomm

View all CVEs affecting Wcd9326 Firmware →

Wcd9335 Firmware by Qualcomm

View all CVEs affecting Wcd9335 Firmware →

Wcd9340 Firmware by Qualcomm

View all CVEs affecting Wcd9340 Firmware →

Wcd9341 Firmware by Qualcomm

View all CVEs affecting Wcd9341 Firmware →

Wcd9370 Firmware by Qualcomm

View all CVEs affecting Wcd9370 Firmware →

Wcd9375 Firmware by Qualcomm

View all CVEs affecting Wcd9375 Firmware →

Wcd9380 Firmware by Qualcomm

View all CVEs affecting Wcd9380 Firmware →

Wcd9385 Firmware by Qualcomm

View all CVEs affecting Wcd9385 Firmware →

Wcd9390 Firmware by Qualcomm

View all CVEs affecting Wcd9390 Firmware →

Wcd9395 Firmware by Qualcomm

View all CVEs affecting Wcd9395 Firmware →

Wcn3610 Firmware by Qualcomm

View all CVEs affecting Wcn3610 Firmware →

Wcn3615 Firmware by Qualcomm

View all CVEs affecting Wcn3615 Firmware →

Wcn3620 Firmware by Qualcomm

View all CVEs affecting Wcn3620 Firmware →

Wcn3660b Firmware by Qualcomm

View all CVEs affecting Wcn3660b Firmware →

Wcn3680b Firmware by Qualcomm

View all CVEs affecting Wcn3680b Firmware →

Wcn3910 Firmware by Qualcomm

View all CVEs affecting Wcn3910 Firmware →

Wcn3950 Firmware by Qualcomm

View all CVEs affecting Wcn3950 Firmware →

Wcn3980 Firmware by Qualcomm

View all CVEs affecting Wcn3980 Firmware →

Wcn3988 Firmware by Qualcomm

View all CVEs affecting Wcn3988 Firmware →

Wcn3990 Firmware by Qualcomm

View all CVEs affecting Wcn3990 Firmware →

Wcn6740 Firmware by Qualcomm

View all CVEs affecting Wcn6740 Firmware →

Wsa8810 Firmware by Qualcomm

View all CVEs affecting Wsa8810 Firmware →

Wsa8815 Firmware by Qualcomm

View all CVEs affecting Wsa8815 Firmware →

Wsa8830 Firmware by Qualcomm

View all CVEs affecting Wsa8830 Firmware →

Wsa8832 Firmware by Qualcomm

View all CVEs affecting Wsa8832 Firmware →

Wsa8835 Firmware by Qualcomm

View all CVEs affecting Wsa8835 Firmware →

Wsa8840 Firmware by Qualcomm

View all CVEs affecting Wsa8840 Firmware →

Wsa8845 Firmware by Qualcomm

View all CVEs affecting Wsa8845 Firmware →

Wsa8845h Firmware by Qualcomm

View all CVEs affecting Wsa8845h Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers could read sensitive information from device memory, potentially exposing authentication credentials, personal data, or cryptographic keys.

🟠

Likely Case

Information leakage of non-critical data from RTP packet processing buffers, potentially revealing metadata about communications.

🟢

If Mitigated

Limited exposure of non-sensitive data with proper network segmentation and access controls in place.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Requires sending specially crafted RTP packets to target device; network access needed

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm July 2025 security bulletin for specific patch versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset versions. 2. Apply firmware updates from device manufacturer. 3. Reboot device after update.

🔧 Temporary Workarounds

Network filtering

all

Block or filter RTP traffic at network perimeter

Disable vulnerable services

all

Disable RTP processing services if not required

🧯 If You Can't Patch

• Segment network to restrict RTP traffic to trusted sources only
• Implement network monitoring for anomalous RTP traffic patterns

🔍 How to Verify

Check if Vulnerable:

Copy

Check device chipset version and compare against Qualcomm advisory

Check Version:

Copy

Device-specific commands vary; typically in Settings > About Phone > Baseband version

Verify Fix Applied:

Copy

Verify firmware version has been updated to patched version

📡 Detection & Monitoring

Log Indicators:

• Unusual RTP packet processing errors
• Memory access violations in RTP stack

Network Indicators:

• Malformed RTP packets targeting devices
• Unexpected RTP traffic to mobile devices

SIEM Query:

Copy

Search for RTP protocol anomalies or memory access violations in device logs

📊 Metadata

CVE ID: CVE-2025-21427

CVSS v3 Score: 8.2 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

CWE: CWE-126

EPSS Score: 0.05% exploit probability (15.5th percentile)

Published: July 8, 2025

Last Updated: February 11, 2026

🔗 References

• https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html Vendor Advisory

📤 Share & Export

Twitter LinkedIn Reddit Copy Link

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-21427, you might also want to check these:

CVE-2017-17772 9.8

This vulnerability allows attackers to perform out-of-bounds reads in 802.11 frame processing functi...

Same vulnerability type (CWE-126)

CVE-2023-36397 9.8

This vulnerability allows remote attackers to execute arbitrary code on affected Windows systems by ...

Same vulnerability type (CWE-126)

CVE-2021-34584 9.1

CVE-2021-34584 is a buffer over-read vulnerability in the CODESYS V2 web server that allows attacker...

Same vulnerability type (CWE-126)