{“lastseen”:””,”description”:”Information disclosure while opening a fastrpc session when domain is not sanitized.”,”published”:”2025-08-06T07:25:50.337Z”,”modified”:”2025-08-06T14:37:52.448Z”,”type”:”cve”,”title”:”Buffer Over-read in Automotive OS Platform Android”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/august-2025-bulletin.html”,”id”:”CVE-2025-21457″,”bulletinFamily”:””,”cwe”:[“CWE-126″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon AR8035\\nQualcomm, Inc. Snapdragon FastConnect 7800\\nQualcomm, Inc. Snapdragon QCA6584AU\\nQualcomm, Inc. Snapdragon QCA6698AQ\\nQualcomm, Inc. Snapdragon QCA8081\\nQualcomm, Inc. Snapdragon QCA8337\\nQualcomm, Inc. Snapdragon QCC710\\nQualcomm, Inc. Snapdragon QCN6224\\nQualcomm, Inc. Snapdragon QCN6274\\nQualcomm, Inc. Snapdragon QFW7114\\nQualcomm, Inc. Snapdragon QFW7124\\nQualcomm, Inc. Snapdragon Snapdragon Auto 5G Modem-RF Gen 2\\nQualcomm, Inc. Snapdragon Snapdragon X72 5G Modem-RF System\\nQualcomm, Inc. Snapdragon Snapdragon X75 5G Modem-RF System\\nQualcomm, Inc. Snapdragon WCD9340″,”sourceHref”:””,”cvss”:{“score”:6.1,”severity”:”MEDIUM”,”vector”:”CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:N\/A:L”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Snapdragon”,”version”:”AR8035″,”vendor”:”Qualcomm, Inc.”,”ai_description”:”A buffer over-read vulnerability in the Automotive OS Platform Android could lead to information disclosure when opening a FastRPC session without proper domain sanitization.”,”ai_severity”:”Medium”,”ai_vendor”:”Qualcomm, Inc.”,”ai_product”:”Snapdragon”,”ai_version”:”AR8035″,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”Information disclosure while opening a fastrpc session when domain is not sanitized.”,”published”:”2025-08-06T07:25:50.337Z”,”modified”:”2025-08-06T14:37:52.448Z”,”type”:”cve”,”title”:”Buffer Over-read in Automotive OS Platform Android”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/august-2025-bulletin.html”,”id”:”CVE-2025-21457″,”bulletinFamily”:””,”cwe”:[“CWE-126″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon AR8035\\nQualcomm, Inc. Snapdragon FastConnect 7800\\nQualcomm,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,31,12,21,13,7,11,5],"class_list":["post-10010","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-61","tag-exploit","tag-medium","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n