Critical
Qualcomm RTP NALU Reassembly Memory Corruption RCE
IdentifiersCVE-2025-21483CWE-119· Improper Restriction of Operations…
CVE-2025-21483 is a critical memory corruption vulnerability in Qualcomm closed-source Data Network Stack and Connectivity components. According to the provided content, the flaw is triggered when a user equipment (UE) receives an RTP packet from the network during reassembly of Network Abstraction Layer Units (NALUs). The issue is described as improper restriction of operations within the bounds of a memory buffer, consistent with CWE-119. The vulnerable code path processes RTP-carried video data, and malformed or oversized packet content during NALU reassembly can corrupt memory, reportedly as a heap-based buffer overflow, potentially leading to arbitrary code execution in low-level Qualcomm firmware.
Share:
For your environment
Are you exposed to this one?
Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.
ANALYST BRIEF
Impact, mitigation & remediation
What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.
Impact
What an attacker gets, and what they’ve been doing with it.
Successful exploitation can cause memory corruption in privileged Qualcomm firmware and may enable remote code execution without user interaction. Because the affected logic resides in low-level connectivity/communications firmware rather than ordinary application code, compromise could bypass many operating system security controls and provide an attacker with highly privileged execution on affected devices. Impacted platforms may include smartphones, tablets, automotive systems, and IoT devices using affected Qualcomm Snapdragon-related components that process RTP multimedia traffic.
Mitigation
If you can’t patch tonight, do this now.
Until patched firmware is deployed, reduce exposure of affected devices to untrusted RTP traffic where operationally feasible. Limit or disable unnecessary services and applications that process RTP-based multimedia streams, restrict adjacent/network access paths that can deliver crafted RTP packets, and segment high-risk devices. Monitor for anomalous crashes or instability in multimedia/connectivity components and prioritize patch deployment on exposed mobile, automotive, and IoT platforms. Specific mitigations beyond patching are limited because the flaw is in low-level closed-source firmware.
Remediation
Patch, then assume compromise.
Apply vendor patches from Qualcomm and downstream OEM/carrier firmware updates that include the September 2025 Android security fixes for this issue. The provided content indicates coverage is associated with the September 2025 Android Security Bulletin and devices should be updated to a security patch level of 2025-09-05 or later where applicable. Because the vulnerable component is closed-source Qualcomm firmware, remediation depends on obtaining and installing updated device firmware from the device manufacturer/carrier.
PUBLIC EXPLOITS
Exploits
No public exploits tracked yet. Mallory keeps watching.
VALID 0 / 0 TOTALView more in app
No public exploit code observed for this vulnerability.
EXPOSURE SURFACE
Affected products & vendors
Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.
VendorProductType
QualcommApq8017 Firmwareoperating_system
QualcommApq8064au Firmwareoperating_system
QualcommAqt1000 Firmwareoperating_system
QualcommFastconnect 6200 Firmwareoperating_system
QualcommFastconnect 6700 Firmwareoperating_system
QualcommFastconnect 6800 Firmwareoperating_system
QualcommFastconnect 6900 Firmwareoperating_system
QualcommFastconnect 7800 Firmwareoperating_system
QualcommMsm8996au Firmwareoperating_system
QualcommQam8255p Firmwareoperating_system
QualcommQam8295p Firmwareoperating_system
QualcommQam8620p Firmwareoperating_system
QualcommQam8650p Firmwareoperating_system
QualcommQam8775p Firmwareoperating_system
QualcommQamsrv1h Firmwareoperating_system
QualcommQamsrv1m Firmwareoperating_system
QualcommQca6310 Firmwareoperating_system
QualcommQca6320 Firmwareoperating_system
QualcommQca6335 Firmwareoperating_system
QualcommQca6391 Firmwareoperating_system
QualcommQca6420 Firmwareoperating_system
QualcommQca6426 Firmwareoperating_system
QualcommQca6430 Firmwareoperating_system
QualcommQca6436 Firmwareoperating_system
QualcommQca6564 Firmwareoperating_system
QualcommQca6564a Firmwareoperating_system
QualcommQca6564au Firmwareoperating_system
QualcommQca6574 Firmwareoperating_system
QualcommQca6574a Firmwareoperating_system
QualcommQca6574au Firmwareoperating_system
QualcommQca6595 Firmwareoperating_system
QualcommQca6595au Firmwareoperating_system
QualcommQca6678aq Firmwareoperating_system
QualcommQca6688aq Firmwareoperating_system
QualcommQca6696 Firmwareoperating_system
QualcommQca6698aq Firmwareoperating_system
QualcommQca6797aq Firmwareoperating_system
QualcommQcm2150 Firmwareoperating_system
QualcommQcm2290 Firmwareoperating_system
QualcommQcm4290 Firmwareoperating_system
QualcommQcm4325 Firmwareoperating_system
QualcommQcm4490 Firmwareoperating_system
QualcommQcm5430 Firmwareoperating_system
QualcommQcm6125 Firmwareoperating_system
QualcommQcm6490 Firmwareoperating_system
QualcommQcm8550 Firmwareoperating_system
QualcommQcn9274 Firmwareoperating_system
QualcommQcs2290 Firmwareoperating_system
QualcommQcs410 Firmwareoperating_system
QualcommQcs4290 Firmwareoperating_system
QualcommQcs4490 Firmwareoperating_system
QualcommQcs5430 Firmwareoperating_system
QualcommQcs610 Firmwareoperating_system
QualcommQcs6125 Firmwareoperating_system
QualcommQcs615 Firmwareoperating_system
QualcommQcs6490 Firmwareoperating_system
QualcommQcs8300 Firmwareoperating_system
QualcommQcs8550 Firmwareoperating_system
QualcommQcs9100 Firmwareoperating_system
QualcommQmp1000 Firmwareoperating_system
QualcommQualcomm 205 Mobile Platform Firmwareoperating_system
QualcommQualcomm 215 Mobile Platform Firmwareoperating_system
QualcommRobotics Rb3 Platform Firmwareoperating_system
QualcommSa4150p Firmwareoperating_system
QualcommSa4155p Firmwareoperating_system
QualcommSa6145p Firmwareoperating_system
QualcommSa6150p Firmwareoperating_system
QualcommSa6155 Firmwareoperating_system
QualcommSa6155p Firmwareoperating_system
QualcommSa7255p Firmwareoperating_system
QualcommSa7775p Firmwareoperating_system
QualcommSa8145p Firmwareoperating_system
QualcommSa8150p Firmwareoperating_system
QualcommSa8155 Firmwareoperating_system
QualcommSa8155p Firmwareoperating_system
QualcommSa8195p Firmwareoperating_system
QualcommSa8255p Firmwareoperating_system
QualcommSa8295p Firmwareoperating_system
QualcommSa8620p Firmwareoperating_system
QualcommSa8650p Firmwareoperating_system
QualcommSa8770p Firmwareoperating_system
QualcommSa8775p Firmwareoperating_system
QualcommSa9000p Firmwareoperating_system
QualcommSd 675 Firmwareoperating_system
QualcommSd 8 Gen1 5g Firmwareoperating_system
QualcommSd626 Firmwareoperating_system
QualcommSd660 Firmwareoperating_system
QualcommSd670 Firmwareoperating_system
QualcommSd675 Firmwareoperating_system
QualcommSd730 Firmwareoperating_system
QualcommSd835 Firmwareoperating_system
QualcommSd855 Firmwareoperating_system
QualcommSd865 5g Firmwareoperating_system
QualcommSd888 Firmwareoperating_system
QualcommSdm429w Firmwareoperating_system
QualcommSdx55 Firmwareoperating_system
QualcommSg4150p Firmwareoperating_system
QualcommSm4125 Firmwareoperating_system
QualcommSm4635 Firmwareoperating_system
QualcommSm6250 Firmwareoperating_system
QualcommSm6370 Firmwareoperating_system
QualcommSm6650 Firmwareoperating_system
QualcommSm7250p Firmwareoperating_system
QualcommSm7315 Firmwareoperating_system
QualcommSm7325p Firmwareoperating_system
QualcommSm7635 Firmwareoperating_system
QualcommSm7675 Firmwareoperating_system
QualcommSm7675p Firmwareoperating_system
QualcommSm8550p Firmwareoperating_system
QualcommSm8635 Firmwareoperating_system
QualcommSm8635p Firmwareoperating_system
QualcommSm8650q Firmwareoperating_system
QualcommSm8735 Firmwareoperating_system
QualcommSm8750 Firmwareoperating_system
QualcommSm8750p Firmwareoperating_system
QualcommSmart Display 200 Platform (Apq5053-Aa) Firmwareoperating_system
QualcommSnapdragon 210 Processor Firmwareoperating_system
QualcommSnapdragon 212 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 4 Gen 1 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 4 Gen 2 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 425 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 429 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 439 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 460 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 480 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 480+ 5g Mobile Platform (Sm4350-Ac) Firmwareoperating_system
QualcommSnapdragon 625 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 626 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 630 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 632 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 636 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 660 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 662 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 670 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 675 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 678 Mobile Platform (Sm6150-Ac) Firmwareoperating_system
QualcommSnapdragon 680 4g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 685 4g Mobile Platform (Sm6225-Ad) Firmwareoperating_system
QualcommSnapdragon 690 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 695 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 710 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 720g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 730 Mobile Platform (Sm7150-Aa) Firmwareoperating_system
QualcommSnapdragon 730g Mobile Platform (Sm7150-Ab) Firmwareoperating_system
QualcommSnapdragon 732g Mobile Platform (Sm7150-Ac) Firmwareoperating_system
QualcommSnapdragon 750g 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 765 5g Mobile Platform (Sm7250-Aa) Firmwareoperating_system
QualcommSnapdragon 765g 5g Mobile Platform (Sm7250-Ab) Firmwareoperating_system
QualcommSnapdragon 768g 5g Mobile Platform (Sm7250-Ac) Firmwareoperating_system
QualcommSnapdragon 778g 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 778g+ 5g Mobile Platform (Sm7325-Ae) Firmwareoperating_system
QualcommSnapdragon 780g 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 782g Mobile Platform (Sm7325-Af) Firmwareoperating_system
QualcommSnapdragon 7c+ Gen 3 Compute Firmwareoperating_system
QualcommSnapdragon 8 Gen 1 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8 Gen 2 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8 Gen 3 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8+ Gen 1 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8+ Gen 2 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 820 Automotive Platform Firmwareoperating_system
QualcommSnapdragon 835 Mobile Pc Platform Firmwareoperating_system
QualcommSnapdragon 845 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 855 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 855+/860 Mobile Platform (Sm8150-Ac) Firmwareoperating_system
QualcommSnapdragon 865 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 865+ 5g Mobile Platform (Sm8250-Ab) Firmwareoperating_system
QualcommSnapdragon 870 5g Mobile Platform (Sm8250-Ac) Firmwareoperating_system
QualcommSnapdragon 888 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 888+ 5g Mobile Platform (Sm8350-Ac) Firmwareoperating_system
QualcommSnapdragon W5+ Gen 1 Wearable Platform Firmwareoperating_system
QualcommSnapdragon X50 5g Modem-Rf System Firmwareoperating_system
QualcommSnapdragon X55 5g Modem-Rf System Firmwareoperating_system
QualcommSnapdragon Xr1 Platform Firmwareoperating_system
QualcommSnapdragon Xr2 5g Platform Firmwareoperating_system
QualcommSnapdragon Xr2+ Gen 1 Platform Firmwareoperating_system
QualcommSrv1h Firmwareoperating_system
QualcommSrv1l Firmwareoperating_system
QualcommSrv1m Firmwareoperating_system
QualcommSw5100 Firmwareoperating_system
QualcommSw5100p Firmwareoperating_system
QualcommSxr1120 Firmwareoperating_system
QualcommSxr2130 Firmwareoperating_system
QualcommTalynplus Firmwareoperating_system
QualcommVideo Collaboration Vc1 Platform Firmwareoperating_system
QualcommVideo Collaboration Vc3 Platform Firmwareoperating_system
QualcommVision Intelligence 100 Platform (Apq8053-Aa) Firmwareoperating_system
QualcommVision Intelligence 200 Platform (Apq8053-Ac) Firmwareoperating_system
QualcommWcd9326 Firmwareoperating_system
QualcommWcd9335 Firmwareoperating_system
QualcommWcd9340 Firmwareoperating_system
QualcommWcd9341 Firmwareoperating_system
QualcommWcd9370 Firmwareoperating_system
QualcommWcd9371 Firmwareoperating_system
QualcommWcd9375 Firmwareoperating_system
QualcommWcd9378 Firmwareoperating_system
QualcommWcd9380 Firmwareoperating_system
QualcommWcd9385 Firmwareoperating_system
QualcommWcd9390 Firmwareoperating_system
QualcommWcd9395 Firmwareoperating_system
QualcommWcn3610 Firmwareoperating_system
QualcommWcn3615 Firmwareoperating_system
QualcommWcn3620 Firmwareoperating_system
QualcommWcn3660b Firmwareoperating_system
QualcommWcn3680 Firmwareoperating_system
QualcommWcn3680b Firmwareoperating_system
QualcommWcn3910 Firmwareoperating_system
QualcommWcn3950 Firmwareoperating_system
QualcommWcn3980 Firmwareoperating_system
QualcommWcn3988 Firmwareoperating_system
QualcommWcn3990 Firmwareoperating_system
QualcommWcn6450 Firmwareoperating_system
QualcommWcn6650 Firmwareoperating_system
QualcommWcn6740 Firmwareoperating_system
QualcommWcn6755 Firmwareoperating_system
QualcommWcn7750 Firmwareoperating_system
QualcommWcn7860 Firmwareoperating_system
QualcommWcn7861 Firmwareoperating_system
QualcommWcn7880 Firmwareoperating_system
QualcommWcn7881 Firmwareoperating_system
QualcommWsa8810 Firmwareoperating_system
QualcommWsa8815 Firmwareoperating_system
QualcommWsa8830 Firmwareoperating_system
QualcommWsa8832 Firmwareoperating_system
QualcommWsa8835 Firmwareoperating_system
QualcommWsa8840 Firmwareoperating_system
QualcommWsa8845 Firmwareoperating_system
QualcommWsa8845h Firmwareoperating_system
Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.
ACTIVITY FEED
Recent activity
14 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.
14 SOURCESView more in app
zeropath blogNews
Qualcomm Snapdragon CVE-2025-21483: Brief Summary of Critical Memory Corruption in RTP NALU Reassembly - ZeroPath Blog | ZeroPath
A critical remote code execution vulnerability in Qualcomm Snapdragon firmware caused by malformed RTP/NALU processing that can lead to heap-based buffer overflow and arbitrary code execution at the firmware level without authentication or user interaction.
Read more
zeropath blogNews
Qualcomm Multi-Mode Call Processor CVE-2025-27034: Brief Summary of a Critical Memory Corruption Vulnerability - ZeroPath Blog | ZeroPath
Another Qualcomm vulnerability disclosed in the same security bulletin that affected core communication modules.
Read more
the hacker newsNews
⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More
Unknown (listed as a trending/high-risk CVE associated with Qualcomm; no technical details provided in the content).
Read more
android security bulletinNews
Android Security Bulletin—September 2025
A critical vulnerability in a Qualcomm closed-source component affecting Android devices, details provided by Qualcomm.
Read more
What this page doesn’t show
The version that knows your environment.
This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Exposure mapping
Query your assets running an affected version, and investigate the blast radius.
Threat actor evidence
Every observed campaign linking this CVE to a named adversary.
Associated malware
Malware families riding this exploit, with evidence and IOCs.
Detection signatures
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Vendor-by-vendor mapping
Cross-references every affected SKU, including bundled OEM variants.
Social activity9
Community discussion across Reddit, Mastodon, and other social sources.