Qualcomm FastConnect 6200
0 remedies
cpe:2.3:h:qualcomm:fastconnect_6200:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Primary
Context
Qualcomm Products Buffer Over-Read Vulnerability in Bluetooth Controller Allowing Transient Denial-of-Service
Vulnerability
A buffer over-read vulnerability has been identified in the Bluetooth controller of various chipsets, including those used in Qualcomm's 5G mobile platforms, automotive software, and video collaboration products. This vulnerability leads to memory corruption and a transient denial-of-service condition by causing a global buffer overflow when an invalid payload type is received via a test command. The issue arises while parsing the EPTM test control message, disrupting normal operations.
Impact
Exploitation of this vulnerability causes memory corruption, creating a global buffer overflow that can be exploited to overwrite memory locations and potentially execute arbitrary code. However, in this specific case, the exploitation leads to a transient denial-of-service condition.
Remediation
Qualcomm has notified device manufacturers about this vulnerability and provided patch instructions. For the latest information on the patching status, contact the device manufacturer.
Added: Sep 24, 2025, 4:47 PM
Updated: Sep 24, 2025, 7:38 PM
Affected Products
Qualcomm FastConnect 6700
0 remedies
cpe:2.3:h:qualcomm:fastconnect_6700:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 6800
0 remedies
cpe:2.3:h:qualcomm:fastconnect_6800:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 6900
0 remedies
cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 7800
0 remedies
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm AQT1000
0 remedies
cpe:2.3:h:qualcomm:aqt1000:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm AR8035
0 remedies
cpe:2.3:o:qualcomm:ar8035_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm CSRA6620
0 remedies
cpe:2.3:h:qualcomm:csra6620:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm CSRA6640
0 remedies
cpe:2.3:h:qualcomm:csra6640:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm CSRB31024
0 remedies
cpe:2.3:h:qualcomm:csrb31024:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm APQ8017
0 remedies
cpe:2.3:o:qualcomm:apq8017_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm APQ8064AU
0 remedies
cpe:2.3:h:qualcomm:apq8064au:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm MDM9628
0 remedies
cpe:2.3:h:qualcomm:mdm9628:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm MDM9640
0 remedies
cpe:2.3:h:qualcomm:mdm9640:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm MSM8996AU
0 remedies
cpe:2.3:o:qualcomm:msm8996au_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8255P
0 remedies
cpe:2.3:o:qualcomm:qam8255p_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8295P
0 remedies
cpe:2.3:o:qualcomm:qam8295p_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8650P
0 remedies
cpe:2.3:o:qualcomm:qam8650p_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8775P
0 remedies
cpe:2.3:o:qualcomm:qam8775p_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAMSRV1H
0 remedies
cpe:2.3:h:qualcomm:qamsrv1h:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAMSRV1M
0 remedies
cpe:2.3:o:qualcomm:qamsrv1m_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA1062
0 remedies
cpe:2.3:h:qualcomm:qca1062:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA1064
0 remedies
cpe:2.3:o:qualcomm:qca1064_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA2066
0 remedies
cpe:2.3:o:qualcomm:qca2066_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA4024
0 remedies
cpe:2.3:h:qualcomm:qca4024:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6174A
0 remedies
cpe:2.3:o:qualcomm:qca6174a_firmware:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6391
0 remedies
cpe:2.3:h:qualcomm:qca6391:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6420
0 remedies
cpe:2.3:o:qualcomm:qca6420_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6430
0 remedies
cpe:2.3:o:qualcomm:qca6430_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6554A
0 remedies
cpe:2.3:h:qualcomm:qca6554a:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6564A
0 remedies
cpe:2.3:h:qualcomm:qca6564a:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6564AU
0 remedies
cpe:2.3:h:qualcomm:qca6564au:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6574
0 remedies
cpe:2.3:h:qualcomm:qca6574:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6574A
0 remedies
cpe:2.3:h:qualcomm:qca6574a:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6574AU
0 remedies
cpe:2.3:o:qualcomm:qca6574au_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6584
0 remedies
cpe:2.3:o:qualcomm:qca6584_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
Qualcomm QCA6584AU
0 remedies
cpe:2.3:o:qualcomm:qca6584au_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
Qualcomm QCA6595
0 remedies
cpe:2.3:h:qualcomm:qca6595:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6595AU
0 remedies
cpe:2.3:o:qualcomm:qca6595au_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6678AQ
0 remedies
cpe:2.3:h:qualcomm:qca6678aq:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6688AQ
0 remedies
cpe:2.3:h:qualcomm:qca6688aq:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6696
0 remedies
cpe:2.3:o:qualcomm:qca6696_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6698AQ
0 remedies
cpe:2.3:o:qualcomm:qca6698aq_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6797AQ
0 remedies
cpe:2.3:o:qualcomm:qca6797aq_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA8081
0 remedies
cpe:2.3:o:qualcomm:qca8081_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA8337
0 remedies
cpe:2.3:h:qualcomm:qca8337:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCC2073
0 remedies
cpe:2.3:h:qualcomm:qcc2073:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCC2076
0 remedies
cpe:2.3:o:qualcomm:qcc2076_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCC5161
0 remedies
cpe:2.3:h:qualcomm:qcc5100:*:*:*:*:*:*:*, +1 more
0 remedies
Qualcomm QCC710
0 remedies
cpe:2.3:o:qualcomm:qcc710_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCC7225
0 remedies
cpe:2.3:h:qualcomm:qcc7225:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCC7226
0 remedies
cpe:2.3:h:qualcomm:qcc7226:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCC7228
0 remedies
cpe:2.3:o:qualcomm:qcc7228_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QMP1000
0 remedies
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM6125
0 remedies
cpe:2.3:o:qualcomm:qcm6125_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6023
0 remedies
cpe:2.3:h:qualcomm:qcn6023:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6024
0 remedies
cpe:2.3:h:qualcomm:qcn6024:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6100
0 remedies
cpe:2.3:o:qualcomm:qcn6100_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6102
0 remedies
cpe:2.3:o:qualcomm:qcn6102_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6112
0 remedies
cpe:2.3:o:qualcomm:qcn6112_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6122
0 remedies
cpe:2.3:o:qualcomm:qcn6122_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6132
0 remedies
cpe:2.3:h:qualcomm:qcn6132:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6224
0 remedies
cpe:2.3:o:qualcomm:qcn6224_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN6274
0 remedies
cpe:2.3:o:qualcomm:qcn6274_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN7605
0 remedies
cpe:2.3:h:qualcomm:qcn7605:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN7606
0 remedies
cpe:2.3:o:qualcomm:qcn7606_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9000
0 remedies
cpe:2.3:h:qualcomm:qcn9000:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9001
0 remedies
cpe:2.3:h:qualcomm:qcn9001:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9002
0 remedies
cpe:2.3:o:qualcomm:qcn9002_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9003
0 remedies
cpe:2.3:o:qualcomm:qcn9003_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9011
0 remedies
cpe:2.3:h:qualcomm:qcn9011:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9012
0 remedies
cpe:2.3:o:qualcomm:qcn9012_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9022
0 remedies
cpe:2.3:h:qualcomm:qcn9022:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9024
0 remedies
cpe:2.3:o:qualcomm:qcn9024_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9070
0 remedies
cpe:2.3:h:qualcomm:qcn9070:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9072
0 remedies
cpe:2.3:h:qualcomm:qcn9072:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9074
0 remedies
cpe:2.3:o:qualcomm:qcn9074_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9100
0 remedies
cpe:2.3:h:qualcomm:qcn9100:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9160
0 remedies
cpe:2.3:h:qualcomm:qcn9160:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9274
0 remedies
cpe:2.3:o:qualcomm:qcn9274_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QFW7114
0 remedies
cpe:2.3:o:qualcomm:qfw7114_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QFW7124
0 remedies
cpe:2.3:h:qualcomm:qfw7124:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QRB5165M
0 remedies
cpe:2.3:h:qualcomm:qrb5165m:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm QRB5165N
0 remedies
cpe:2.3:o:qualcomm:qrb5165n_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Robotics RB5 Platform
0 remedies
cpe:2.3:o:qualcomm:robotics_rb5_platform_firmware:*:*:*:*:*:*:*, +5 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Smart Audio 400 Platform
0 remedies
cpe:2.3:h:qualcomm:smart_audio_400_platform:*:*:*:*:*:*:*, +7 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Smart Display 200 Platform
0 remedies
cpe:2.3:o:qualcomm:smart_display_200_platform_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 210 Processor
0 remedies
cpe:2.3:o:qualcomm:snapdragon_210_processor_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 212 Mobile Platform
0 remedies
cpe:2.3:h:qualcomm:snapdragon_212_mobile_platform:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 4 Gen 1 Mobile Platform
0 remedies
cpe:2.3:h:qualcomm:snapdragon_4_gen_1_mobile_platform:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 4 Gen 2 Mobile Platform
0 remedies
cpe:2.3:o:qualcomm:snapdragon_4_gen_2_mobile_platform_firmware:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 8 Gen 1 Mobile Platform
0 remedies
cpe:2.3:h:qualcomm:snapdragon_8_gen_1_mobile_platform:*:*:*:*:*:*:*, +5 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 8 Gen 2 Mobile Platform
0 remedies
cpe:2.3:h:qualcomm:snapdragon_8_gen_2_mobile_platform:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 8+ Gen 1 Mobile Platform
0 remedies
cpe:2.3:h:qualcomm:snapdragon_8+_gen_1_mobile_platform:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 8+ Gen 2 Mobile Platform
0 remedies
cpe:2.3:h:qualcomm:snapdragon_8+_gen_2_mobile_platform:*:*:*:*:*:*:*, +3 more
0 remedies
- >= 12.1X46, < 12.1X46-D81
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html
AdvisoryBundleRemedyVendor
Showing 1-1 of 1 references
Vulnerability Rating
Custom Algorithm
spread
8.1impact
0.6exploitability
7.0remediation
0.0relevance
0.6threat
0.0urgency
2.9incentive
5.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
Vulnerability Rating
Custom Algorithm
spread
8.1impact
0.6exploitability
7.0remediation
0.0relevance
0.6threat
0.0urgency
2.9incentive
5.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.