CVE-2025-21479

Q: What is the severity of CVE-2025-21479?

CVE-2025-21479 has a CVSS score of 8.6 (HIGH). This vulnerability allows attackers to execute unauthorized commands on GPU micronodes, leading to memory corruption and potential system compromise. It affects systems using Qualcomm GPU components, particularly in mobile devices and embedded systems where these chips are deployed.

8.6 HIGH CISA KEV

📋 TL;DR

This vulnerability allows attackers to execute unauthorized commands on GPU micronodes, leading to memory corruption and potential system compromise. It affects systems using Qualcomm GPU components, particularly in mobile devices and embedded systems where these chips are deployed.

💻 Affected Systems

Products:

Qualcomm Adreno GPU
Qualcomm Snapdragon platforms

Versions: Specific versions not publicly detailed in initial advisory

Operating Systems: Android, Linux-based embedded systems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with Qualcomm GPU components; exact chip models not specified in initial disclosure.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with kernel-level privileges, allowing persistent backdoor installation, data theft, and device bricking.

🟠

Likely Case

Application crashes, denial of service, or limited code execution within GPU context leading to data leakage.

🟢

If Mitigated

Isolated GPU process crashes without affecting host system stability if proper sandboxing is implemented.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

CISA has added to Known Exploited Vulnerabilities catalog, suggesting active exploitation is occurring or expected.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Qualcomm June 2025 security bulletin for specific patched versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for affected chipset models
2. Obtain firmware/OS updates from device manufacturer
3. Apply updates following manufacturer instructions
4. Reboot device to activate fixes

🔧 Temporary Workarounds

Disable GPU acceleration for untrusted applications

android

Restrict GPU access to trusted applications only through system policies

🧯 If You Can't Patch

Implement strict application sandboxing to isolate GPU access
Monitor for abnormal GPU process behavior and memory usage patterns

🔍 How to Verify

Check if Vulnerable:

Check device chipset model and firmware version against Qualcomm's advisory

Check Version:

Android: 'getprop ro.bootloader' or check Settings > About Phone; Linux: Check /sys/class/socinfo/* files

Verify Fix Applied:

Verify firmware version has been updated to patched release specified in Qualcomm bulletin

📡 Detection & Monitoring

Log Indicators:

GPU process crashes
Memory access violations in GPU context
Unusual GPU command sequences

Network Indicators:

None - this is a local memory corruption vulnerability

SIEM Query:

Process:GPU* AND (EventID:1000 OR ExceptionCode:c0000005)

📊 Metadata

CVE ID: CVE-2025-21479

CVSS v3 Score: 8.6 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE: CWE-863

EPSS Score: 0.07% exploit probability (22.4th percentile)

CISA KEV: Actively Exploited added Jun 3, 2025

Published: June 3, 2025

Last Updated: October 28, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-21479 US Government Resource

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Aqt1000 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qcm4490 Firmware by Qualcomm

Qcs4490 Firmware by Qualcomm

Sd855 Firmware by Qualcomm

Sm4635 Firmware by Qualcomm

Sm6250 Firmware by Qualcomm

Sm6650 Firmware by Qualcomm

Sm6650p Firmware by Qualcomm

Sm7325p Firmware by Qualcomm

Sm7635 Firmware by Qualcomm

Sm7675 Firmware by Qualcomm

Sm7675p Firmware by Qualcomm

Sm8550p Firmware by Qualcomm

Sm8635 Firmware by Qualcomm

Sm8635p Firmware by Qualcomm

Sm8650q Firmware by Qualcomm

Snapdragon 4 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon 460 Mobile Platform Firmware by Qualcomm

Snapdragon 480 5g Mobile Platform Firmware by Qualcomm

Snapdragon 480\+ 5g Mobile Platform \(sm4350 Ac\) Firmware by Qualcomm

Snapdragon 662 Mobile Platform Firmware by Qualcomm

Snapdragon 680 4g Mobile Platform Firmware by Qualcomm

Snapdragon 685 4g Mobile Platform \(sm6225 Ad\) Firmware by Qualcomm

Snapdragon 690 5g Mobile Platform Firmware by Qualcomm

Snapdragon 695 5g Mobile Platform Firmware by Qualcomm

Snapdragon 720g Mobile Platform Firmware by Qualcomm

Snapdragon 778g 5g Mobile Platform Firmware by Qualcomm

Snapdragon 778g\+ 5g Mobile Platform \(sm7325 Ae\) Firmware by Qualcomm

Snapdragon 782g Mobile Platform \(sm7325 Af\) Firmware by Qualcomm

Snapdragon 7c\+ Gen 3 Compute Firmware by Qualcomm

Snapdragon 8 Gen 2 Mobile Platform Firmware by Qualcomm

Snapdragon 8 Gen 2 Mobile Platform Firmware by Qualcomm

Snapdragon 8 Gen 3 Mobile Platform Firmware by Qualcomm

Snapdragon 855 Mobile Platform Firmware by Qualcomm

Snapdragon 855\+\/860 Mobile Platform \(sm8150 Ac\) Firmware by Qualcomm

Snapdragon 865 5g Mobile Platform Firmware by Qualcomm

Snapdragon 865\+ 5g Mobile Platform \(sm8250 Ab\) Firmware by Qualcomm

Snapdragon 870 5g Mobile Platform \(sm8250 Ac\) Firmware by Qualcomm

Snapdragon 888 5g Mobile Platform Firmware by Qualcomm

Snapdragon 888\+ 5g Mobile Platform \(sm8350 Ac\) Firmware by Qualcomm

Snapdragon Ar1 Gen 1 Firmware by Qualcomm

Snapdragon Ar1 Gen 1 Platform \"luna1\" Firmware by Qualcomm

Snapdragon X55 5g Modem Rf System Firmware by Qualcomm

Sxr2230p Firmware by Qualcomm

Sxr2250p Firmware by Qualcomm

Sxr2330p Firmware by Qualcomm

Wcd9341 Firmware by Qualcomm

Wcd9370 Firmware by Qualcomm

Wcd9375 Firmware by Qualcomm

Wcd9378 Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcd9385 Firmware by Qualcomm

Wcd9390 Firmware by Qualcomm

Wcd9395 Firmware by Qualcomm

Wcn3950 Firmware by Qualcomm

Wcn3988 Firmware by Qualcomm

Wcn6450 Firmware by Qualcomm

Wcn6650 Firmware by Qualcomm

Wcn6755 Firmware by Qualcomm

Wcn7861 Firmware by Qualcomm

Wcn7881 Firmware by Qualcomm

Wsa8810 Firmware by Qualcomm

Wsa8815 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8832 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm

Wsa8840 Firmware by Qualcomm

Wsa8845 Firmware by Qualcomm

Wsa8845h Firmware by Qualcomm

⚠️ Risk & Real-World Impact

Worst Case