Cyber Resilience

CVE-2024-53025

Medium

Published: 03 March 2025

Published
03 March 2025
Modified
06 March 2025
KEV Added
Patch
CVSS Score v3.1 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0015 35.8th percentile
Risk Priority 11 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-53025 is a medium-severity Integer Overflow or Wraparound (CWE-190) vulnerability in Qualcomm Fastconnect 7800 Firmware. Its CVSS base score is 5.5 (Medium).

Operationally, ranked at the 35.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Transient DOS can occur while processing UCI command.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

qualcomm
fastconnect 7800 firmware
all versions
qualcomm
sm8750 firmware
all versions
qualcomm
sm8750p firmware
all versions
qualcomm
snapdragon 8 gen 3 firmware
all versions
qualcomm
wcd9390 firmware
all versions
qualcomm
wcd9395 firmware
all versions
qualcomm
wcn6450 firmware
all versions
qualcomm
wcn6755 firmware
all versions
qualcomm
wcn7860 firmware
all versions
qualcomm
wcn7861 firmware
all versions
+8 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References