SB2025060235 - Multiple vulnerabilities in Qualcomm chipsets

Description

This security bulletin contains information about 18 secuirty vulnerabilities.

1) Buffer overflow (CVE-ID: CVE-2024-53013)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Audio. A local application can read and manipulate data.

2) Untrusted Pointer Dereference (CVE-ID: CVE-2025-21486)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in DSP Service. A local application can execute arbitrary code.

3) Use After Free (CVE-ID: CVE-2025-27031)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Bluetooth HOST. A local application can execute arbitrary code.

4) Buffer over-read (CVE-ID: CVE-2025-27029)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN HAL. A remote attacker can perform a denial of service (DoS) attack.

5) Buffer over-read (CVE-ID: CVE-2024-53021)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.

6) Buffer over-read (CVE-ID: CVE-2024-53020)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.

7) Buffer over-read (CVE-ID: CVE-2024-53019)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.

8) Improper Access Control (CVE-ID: CVE-2024-53010)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in Core. A local application can execute arbitrary code.

9) Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-ID: CVE-2025-21485)

The vulnerability allows a local application to execute arbitrary code.

The vulnerability exists due to improper input validation in DSP Service. A local application can execute arbitrary code.

10) Incorrect Authorization (CVE-ID: CVE-2025-21479)

The vulnerability allows a remote attacker to execute arbitrary code.

The vulnerability exists due to improper input validation in Graphics. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code.

Note, the vulnerability is being actively exploited in the wild.

11) Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-ID: CVE-2024-53018)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Camera Driver. A local application can read and manipulate data.

12) Use of Out-of-range Pointer Offset (CVE-ID: CVE-2024-53017)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Camera Driver. A local application can read and manipulate data.

13) Time-of-check Time-of-use (TOCTOU) Race Condition (CVE-ID: CVE-2024-53016)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Camera Driver. A local application can read and manipulate data.

14) Use After Free (CVE-ID: CVE-2024-53015)

The vulnerability allows a local application to read and manipulate data.

The vulnerability exists due to improper input validation in Computer Vision. A local application can read and manipulate data.

15) Buffer over-read (CVE-ID: CVE-2025-21463)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN Host Communication. A remote attacker can perform a denial of service (DoS) attack.

16) Buffer over-read (CVE-ID: CVE-2024-53026)

The vulnerability allows a remote attacker to read and manipulate data.

The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.

17) Use After Free (CVE-ID: CVE-2025-27038)

The vulnerability allows a remote attacker to execute arbitrary code.

The vulnerability exists due to improper input validation in Graphics. A remote attacker can execute arbitrary code.

Note, the vulnerability is being actively exploited in the wild.

18) Incorrect Authorization (CVE-ID: CVE-2025-21480)

The vulnerability allows a remote attacker to execute arbitrary code.

The vulnerability exists due to improper input validation in Graphics Windows. A remote attacker can trick the victim to open a specially crafted file and execute arbitrary code.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install update from vendor's website.

References

• https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html