CVE-2025-36921 – This vulnerability allows an attacker to read m... (How to Fix)

Q: What is the severity of CVE-2025-36921?

CVE-2025-36921 has a CVSS score of 5.5 (MEDIUM). This vulnerability allows an attacker to read memory beyond intended boundaries in the baseband firmware's ProtocolPsUnthrottleApn() function. Exploitation requires compromising the baseband firmware first, but can then lead to local information disclosure without user interaction. This primarily affects Android devices with vulnerable baseband implementations.

📋 TL;DR

This vulnerability allows an attacker to read memory beyond intended boundaries in the baseband firmware's ProtocolPsUnthrottleApn() function. Exploitation requires compromising the baseband firmware first, but can then lead to local information disclosure without user interaction. This primarily affects Android devices with vulnerable baseband implementations.

💻 Affected Systems

Products:

Google Pixel devices with vulnerable baseband firmware

Versions: Android versions prior to December 2025 security patch

Operating Systems: Android

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects devices with specific baseband firmware implementations. Requires baseband firmware compromise as a prerequisite.

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker with baseband firmware compromise could read sensitive memory contents, potentially exposing cryptographic keys, authentication tokens, or other protected data stored in adjacent memory regions.

🟠

Likely Case

Limited information disclosure from baseband memory regions, potentially exposing some device configuration data or temporary buffers, but unlikely to reveal highly sensitive user data without additional vulnerabilities.

🟢

If Mitigated

With proper baseband firmware integrity protections and memory isolation, exploitation would be prevented or limited to non-sensitive memory regions.

🌐 Internet-Facing: LOW - Exploitation requires local baseband firmware compromise first, not directly exploitable over the internet.

🏢 Internal Only: MEDIUM - If an attacker gains baseband firmware access through other means, this vulnerability could be leveraged for information disclosure within the device.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation requires first compromising the baseband firmware, which is typically difficult and requires specialized knowledge of baseband systems.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: December 2025 Android security patch or later

Vendor Advisory: https://source.android.com/security/bulletin/pixel/2025-12-01

Restart Required: Yes

Instructions:

1. Check for system updates in Settings > System > System update. 2. Install the December 2025 security patch or later. 3. Reboot the device after installation completes.

🔧 Temporary Workarounds

Baseband firmware integrity monitoring

android

Implement monitoring for baseband firmware integrity violations or unauthorized modifications

🧯 If You Can't Patch

Implement strict physical security controls to prevent unauthorized baseband access
Deploy mobile device management (MDM) solutions with firmware integrity checking capabilities

🔍 How to Verify

Check if Vulnerable:

Check Android security patch level in Settings > About phone > Android version. If patch level is earlier than December 2025, device is vulnerable.

Check Version:

adb shell getprop ro.build.version.security_patch

Verify Fix Applied:

Verify Android security patch level shows December 2025 or later in Settings > About phone > Android version.

📡 Detection & Monitoring

Log Indicators:

Baseband firmware integrity violations
Unexpected baseband memory access patterns
Baseband crash logs with out-of-bounds memory references

Network Indicators:

Anomalous baseband communication patterns
Unexpected baseband protocol behavior

SIEM Query:

Baseband logs containing memory access violations or integrity check failures

📊 Metadata

CVE ID: CVE-2025-36921

CVSS v3 Score: 5.5 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE: CWE-125

EPSS Score: 0.01% exploit probability (0.3th percentile)

Published: December 11, 2025

Last Updated: December 12, 2025

🔗 References

https://source.android.com/security/bulletin/pixel/2025-12-01 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-36921, you might also want to check these: