CVE-2025-21436 Use After Free in DSP Service

🗓️ 07 Apr 2025 10:16:03Reported by qualcommType

Use After Free vulnerability in DSP Service may cause memory corruption with simultaneous IOCTL calls.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2025-21436	7 Apr 202511:15	–	attackerkb
Circl	CVE-2025-21436	7 Apr 202513:36	–	circl
CNNVD	Qualcomm Chipsets 资源管理错误漏洞	7 Apr 202500:00	–	cnnvd
CVE	CVE-2025-21436	7 Apr 202510:16	–	cve
EUVD	EUVD-2025-9996	3 Oct 202520:07	–	euvd
NVD	CVE-2025-21436	7 Apr 202511:15	–	nvd
OSV	ASB-A-388048322	1 Apr 202500:00	–	osv
Positive Technologies	PT-2025-15209 · Qualcomm · Snapdragon +22	7 Apr 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-21436	9 Apr 202511:08	–	redhatcve
Vulnrichment	CVE-2025-21436 Use After Free in DSP Service	7 Apr 202510:16	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Compute",
      "Snapdragon Mobile",
      "Snapdragon Wearables"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "FastConnect 7800"
      },
      {
        "status": "affected",
        "version": "QMP1000"
      },
      {
        "status": "affected",
        "version": "SM8735"
      },
      {
        "status": "affected",
        "version": "SM8750"
      },
      {
        "status": "affected",
        "version": "SM8750P"
      },
      {
        "status": "affected",
        "version": "Snapdragon 8 Gen 3 Mobile Platform"
      },
      {
        "status": "affected",
        "version": "Snapdragon W5+ Gen 1 Wearable Platform"
      },
      {
        "status": "affected",
        "version": "SW5100"
      },
      {
        "status": "affected",
        "version": "SW5100P"
      },
      {
        "status": "affected",
        "version": "SXR2330P"
      },
      {
        "status": "affected",
        "version": "WCD9378"
      },
      {
        "status": "affected",
        "version": "WCD9380"
      },
      {
        "status": "affected",
        "version": "WCD9390"
      },
      {
        "status": "affected",
        "version": "WCD9395"
      },
      {
        "status": "affected",
        "version": "WCN7750"
      },
      {
        "status": "affected",
        "version": "WCN7860"
      },
      {
        "status": "affected",
        "version": "WCN7861"
      },
      {
        "status": "affected",
        "version": "WCN7880"
      },
      {
        "status": "affected",
        "version": "WCN7881"
      },
      {
        "status": "affected",
        "version": "WSA8830"
      },
      {
        "status": "affected",
        "version": "WSA8832"
      },
      {
        "status": "affected",
        "version": "WSA8835"
      },
      {
        "status": "affected",
        "version": "WSA8840"
      },
      {
        "status": "affected",
        "version": "WSA8845"
      },
      {
        "status": "affected",
        "version": "WSA8845H"
      }
    ]
  }
]

Source	Link
docs	www.docs.qualcomm.com/product/publicresources/securitybulletin/april-2025-bulletin.html

07 Apr 2025 10:16Current

CVSS 3.17.8

EPSS0.00089

CWE-416