{"uuid": "13f0850e-798e-4625-b315-667b9d13bc30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "name": "Qualcomm July 2025 Security Bulletin", "description": "| Public ID | Security Rating | CVSS Rating | Technology Area | Date Reported |\n|-------------------|------------------|--------------|-----------------------------------|----------------|\n| CVE-2024-53009 | Critical | Medium | Automotive Autonomy | Internal |\n| CVE-2025-21444 | Critical | High | Data Network Stack & Connectivity | Internal |\n| CVE-2025-21445 | Critical | High | Data Network Stack & Connectivity | Internal |\n| CVE-2025-21450 | Critical | Critical | GPS | Internal |\n| CVE-2025-21422 | High | High | Automotive | Internal |\n| CVE-2025-21427 | High | High | Data Network Stack & Connectivity | 08/18/2024 |\n| CVE-2025-21432 | High | High | HLOS | Internal |\n| CVE-2025-21433 | High | Medium | HLOS | Internal |\n| CVE-2025-21446 | High | High | WLAN Firmware | Internal |\n| CVE-2025-21449 | High | High | WLAN Firmware | Internal |\n| CVE-2025-21454 | High | High | WLAN Firmware | Internal |\n| CVE-2025-21466 | High | High | Display | Internal |\n| CVE-2025-27044 | High | High | Video | 10/27/2024 |\n| CVE-2025-27046 | High | High | Display | Internal |\n| CVE-2025-27047 | High | High | Display | Internal |\n| CVE-2025-27050 | High | High | Camera | 11/06/2024 |\n| CVE-2025-27051 | High | High | Windows WLAN Host | 12/14/2024 |\n| CVE-2025-27052 | High | High | Core Services | 12/20/2024 |\n| CVE-2025-27055 | High | High | Camera | Internal |\n| CVE-2025-27058 | High | High | Computer Vision | Internal |\n\n\n\n#### Open Source Software Issues\n\nThe tables below summarize security vulnerabilities that were addressed through open source software\n\nThis table lists high impact security vulnerabilities. Patches are being actively shared with OEMs, who have been notified and strongly recommended to deploy those patches on released devices as soon as possible. Please contact the device manufacturer for information on the patching status of released devices. \n\n| Public ID | Security Rating | CVSS Rating | Technology Area | Date Reported |\n|-------------------|------------------|--------------|------------------|----------------|\n| CVE-2025-27042 | High | High | Video | 09/22/2024 |\n| CVE-2025-27043 | High | High | Video | 09/17/2024 |\n| CVE-2025-27056 | High | High | DSP Service | Internal |\n| CVE-2025-27057 | High | High | WLAN Host | Internal |\n| CVE-2025-27061 | High | High | Video | 10/04/2024 |\n", "creation_timestamp": "2025-07-08T13:19:01.667211+00:00", "timestamp": "2025-07-08T13:41:42.690122+00:00", "related_vulnerabilities": ["CVE-2025-21466", "CVE-2025-27057", "CVE-2025-27056", "CVE-2025-21444", "CVE-2025-27044", "CVE-2025-21454", "CVE-2025-21449", "CVE-2025-27051", "CVE-2025-27043", "CVE-2025-27046", "CVE-2025-27058", "CVE-2025-21422", "CVE-2025-27050", "CVE-2025-21432", "CVE-2025-27047", "CVE-2025-27052", "CVE-2025-27061", "CVE-2025-21450", "CVE-2025-21446", "CVE-2025-21445", "CVE-2025-21433", "CVE-2025-27042", "CVE-2024-53009", "CVE-2025-21427", "CVE-2025-27055"], "meta": [{"ref": ["https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2025-bulletin.html"]}], "author": {"login": "cedric", "name": "C\u00e9dric Bonhomme", "uuid": "af0120d0-3dac-4a6a-974b-a9f33d2a9846"}}