CVE-2025-21463

Q: What is the severity of CVE-2025-21463?

CVE-2025-21463 has a CVSS score of 7.5 (HIGH). This vulnerability allows an attacker to cause a Denial of Service (DoS) condition by sending specially crafted beacon frames containing EHT operation information elements. It affects systems using Qualcomm Wi-Fi chipsets that process these frames, potentially disrupting wireless connectivity.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows an attacker to cause a Denial of Service (DoS) condition by sending specially crafted beacon frames containing EHT operation information elements. It affects systems using Qualcomm Wi-Fi chipsets that process these frames, potentially disrupting wireless connectivity.

💻 Affected Systems

Products:

Qualcomm Wi-Fi chipsets and devices using them

Versions: Specific versions not detailed in reference; check Qualcomm advisory for exact affected versions

Operating Systems: Android, Linux, and other OS using Qualcomm Wi-Fi drivers

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems with Wi-Fi enabled and processing beacon frames; exact chipset models in Qualcomm advisory

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete disruption of Wi-Fi connectivity on affected devices, requiring reboot to restore functionality.

🟠

Likely Case

Temporary Wi-Fi disconnection or performance degradation until the system recovers from the malformed frame processing.

🟢

If Mitigated

Minimal impact with proper network segmentation and monitoring; affected devices may experience brief connectivity interruptions.

🌐 Internet-Facing: MEDIUM - Attackers could target Wi-Fi networks from nearby locations, but requires proximity and specific targeting.

🏢 Internal Only: LOW - Internal attackers would need physical proximity to wireless networks and specific knowledge of vulnerable systems.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation requires sending malformed beacon frames to target devices; no authentication needed but requires proximity to wireless network

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm security bulletin for specific firmware/driver versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset models. 2. Obtain updated firmware/drivers from device manufacturer. 3. Apply updates following manufacturer instructions. 4. Reboot affected devices.

🔧 Temporary Workarounds

Disable Wi-Fi when not needed

all

Turn off Wi-Fi on critical devices when wireless connectivity is not required

Implement network segmentation

all

Isolate critical systems on separate network segments from general Wi-Fi access

🧯 If You Can't Patch

Implement physical security controls to limit proximity access to wireless networks
Monitor for unusual beacon frame patterns or Wi-Fi disconnection events

🔍 How to Verify

Check if Vulnerable:

Check device specifications for Qualcomm Wi-Fi chipset and compare against affected models in Qualcomm advisory

Check Version:

Device-specific commands vary; check manufacturer documentation for Wi-Fi driver/firmware version checking

Verify Fix Applied:

Verify firmware/driver version matches patched versions listed in Qualcomm advisory

📡 Detection & Monitoring

Log Indicators:

Multiple Wi-Fi disconnection events
Driver/firmware crash logs
Beacon frame processing errors

Network Indicators:

Unusual beacon frame patterns
Spike in malformed management frames

SIEM Query:

Search for Wi-Fi driver crashes OR beacon frame processing errors OR multiple wireless disconnection events within short timeframes

📊 Metadata

CVE ID: CVE-2025-21463

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-126

EPSS Score: 0.06% exploit probability (18.4th percentile)

Published: June 3, 2025

Last Updated: November 28, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Csr8811 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Flight Rb5 5g Platform Firmware by Qualcomm

Immersive Home 214 Platform Firmware by Qualcomm

Immersive Home 216 Platform Firmware by Qualcomm

Immersive Home 316 Platform Firmware by Qualcomm

Immersive Home 318 Platform Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq5010 Firmware by Qualcomm

Ipq5028 Firmware by Qualcomm

Ipq5300 Firmware by Qualcomm

Ipq5302 Firmware by Qualcomm

Ipq5312 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq5424 Firmware by Qualcomm

Ipq6000 Firmware by Qualcomm

Ipq6010 Firmware by Qualcomm

Ipq6018 Firmware by Qualcomm

Ipq6028 Firmware by Qualcomm

Ipq8070a Firmware by Qualcomm

Ipq8071a Firmware by Qualcomm

Ipq8072a Firmware by Qualcomm

Ipq8074a Firmware by Qualcomm

Ipq8076 Firmware by Qualcomm

Ipq8076a Firmware by Qualcomm

Ipq8078 Firmware by Qualcomm

Ipq8078a Firmware by Qualcomm

Ipq8173 Firmware by Qualcomm

Ipq8174 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9048 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9570 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca4024 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6777aq Firmware by Qualcomm

Qca6787aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8080 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8101 Firmware by Qualcomm

Qca8102 Firmware by Qualcomm

Qca8111 Firmware by Qualcomm

Qca8112 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca8384 Firmware by Qualcomm

Qca8385 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qca9888 Firmware by Qualcomm