CVE Field Guide
About Us
CVE-2025-21450
PUBLISHED
Improper Authentication in GPS_GNSS
Assigner:
qualcomm
Reserved:
18.12.2024
Published:
08.07.2025
Updated:
08.07.2025
Cryptographic issue occurs due to use of insecure connection method while downloading.
Metrics
CVSS 3.1
CVSS Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CVSS Score:
9.1
CVSS score
9.1
Attack Vector
Network
Scope
Unchanged
Attack Complexity
Low
Confidentiality Impact
High
Privileges Required
None
Integrity Impact
High
User Interaction
None
Availability Impact
None
CVSS 3.1
Product Status
Vendor
Qualcomm, Inc.
Product
Snapdragon
Versions
Default:
unaffected
Version AR8035 is affected
Version FastConnect 6200 is affected
Version FastConnect 6700 is affected
Version FastConnect 6900 is affected
Version FastConnect 7800 is affected
Version QCA6174A is affected
Version QCA6391 is affected
Version QCA6574A is affected
Version QCA6574AU is affected
Version QCA6584AU is affected
Version QCA6595AU is affected
Version QCA6678AQ is affected
Version QCA6688AQ is affected
Version QCA6696 is affected
Version QCA6698AQ is affected
Version QCA6698AU is affected
Version QCA6797AQ is affected
Version QCA8081 is affected
Version QCA8337 is affected
Version QCC710 is affected
Version QCM4490 is affected
Version QCM5430 is affected
Version QCM6490 is affected
Version QCM8550 is affected
Version QCN6024 is affected
Version QCN6224 is affected
Version QCN6274 is affected
Version QCN9011 is affected
Version QCN9012 is affected
Version QCN9024 is affected
Version QCS4490 is affected
Version QCS5430 is affected
Version QCS6490 is affected
Version QCS8550 is affected
Version QEP8111 is affected
Version QFW7114 is affected
Version QFW7124 is affected
Version Qualcomm Video Collaboration VC3 Platform is affected
Version SD 8 Gen1 5G is affected
Version SDX55 is affected
Version SDX61 is affected
Version SDX80M is affected
Version SG8275P is affected
Version SM4635 is affected
Version SM6370 is affected
Version SM6650 is affected
Version SM6650P is affected
Version SM7325P is affected
Version SM7635 is affected
Version SM7635P is affected
Version SM7675 is affected
Version SM7675P is affected
Version SM8635 is affected
Version SM8635P is affected
Version SM8650Q is affected
Version SM8750 is affected
Version SM8750P is affected
Version Snapdragon 4 Gen 1 Mobile Platform is affected
Version Snapdragon 480 5G Mobile Platform is affected
Version Snapdragon 480+ 5G Mobile Platform (SM4350-AC) is affected
Version Snapdragon 695 5G Mobile Platform is affected
Version Snapdragon 778G 5G Mobile Platform is affected
Version Snapdragon 778G+ 5G Mobile Platform (SM7325-AE) is affected
Version Snapdragon 782G Mobile Platform (SM7325-AF) is affected
Version Snapdragon 7c+ Gen 3 Compute is affected
Version Snapdragon 8 Gen 1 Mobile Platform is affected
Version Snapdragon 8 Gen 3 Mobile Platform is affected
Version Snapdragon 8+ Gen 1 Mobile Platform is affected
Version Snapdragon 888 5G Mobile Platform is affected
Version Snapdragon 888+ 5G Mobile Platform (SM8350-AC) is affected
Version Snapdragon Auto 5G Modem-RF is affected
Version Snapdragon Auto 5G Modem-RF Gen 2 is affected
Version Snapdragon W5+ Gen 1 Wearable Platform is affected
Version Snapdragon X32 5G Modem-RF System is affected
Version Snapdragon X35 5G Modem-RF System is affected
Version Snapdragon X62 5G Modem-RF System is affected
Version Snapdragon X65 5G Modem-RF System is affected
Version Snapdragon X72 5G Modem-RF System is affected
Version Snapdragon X75 5G Modem-RF System is affected
Version SW5100 is affected
Version SW5100P is affected
Version WCD9340 is affected
Version WCD9360 is affected
Version WCD9370 is affected
Version WCD9375 is affected
Version WCD9378 is affected
Version WCD9380 is affected
Version WCD9385 is affected
Version WCD9390 is affected
Version WCD9395 is affected
Version WCN3950 is affected
Version WCN3980 is affected
Version WCN3988 is affected
Version WCN6450 is affected
Version WCN6650 is affected
Version WCN6755 is affected
Version WCN7860 is affected
Version WCN7861 is affected
Version WCN7880 is affected
Version WCN7881 is affected
Version WSA8810 is affected
Version WSA8815 is affected
Version WSA8830 is affected
Version WSA8832 is affected
Version WSA8835 is affected
Version WSA8840 is affected
Version WSA8845 is affected
Version WSA8845H is affected
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html
Problem Types
CWE-287 Improper Authentication
CWE