RSA PKCS Padding Decoding Vulnerability in OpenSSL
CVE-2025-21482 Published on September 24, 2025
Cryptographic Issues in Core
Cryptographic issue while performing RSA PKCS padding decoding.
Vulnerability Analysis
CVE-2025-21482 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.
Attack Vector:
LOCAL
Attack Complexity:
LOW
Privileges Required:
LOW
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
NONE
Weakness Type
Cryptographic Issues
Weaknesses in this category are related to the design and implementation of data confidentiality and integrity. Frequently these deal with the use of encoding techniques, encryption libraries, and hashing algorithms. The weaknesses in this category could lead to a degradation of the quality data if they are not addressed.
Products Associated with CVE-2025-21482
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2025-21482 are published in these products:
Affected Versions
Qualcomm, Inc. Snapdragon:- Version 315 5G IoT Modem is affected.
- Version 9205 LTE Modem is affected.
- Version 9206 LTE Modem is affected.
- Version 9207 LTE Modem is affected.
- Version APQ8017 is affected.
- Version APQ8037 is affected.
- Version APQ8064AU is affected.
- Version APQ8092 is affected.
- Version APQ8094 is affected.
- Version AQT1000 is affected.
- Version AR3012 is affected.
- Version AR7420 is affected.
- Version AR8031 is affected.
- Version AR8035 is affected.
- Version AR9380 is affected.
- Version C-V2X 9150 is affected.
- Version CSR8811 is affected.
- Version CSRA6620 is affected.
- Version CSRA6640 is affected.
- Version CSRB31024 is affected.
- Version FastConnect 6200 is affected.
- Version FastConnect 6700 is affected.
- Version FastConnect 6800 is affected.
- Version FastConnect 6900 is affected.
- Version FastConnect 7800 is affected.
- Version Flight RB5 5G Platform is affected.
- Version FSM9900 is affected.
- Version FSM9905 is affected.
- Version FSM9910 is affected.
- Version FSM9915 is affected.
- Version FSM9916 is affected.
- Version FSM9950 is affected.
- Version FSM9955 is affected.
- Version Home Hub 100 Platform is affected.
- Version Immersive Home 214 Platform is affected.
- Version Immersive Home 216 Platform is affected.
- Version Immersive Home 316 Platform is affected.
- Version Immersive Home 318 Platform is affected.
- Version Immersive Home 3210 Platform is affected.
- Version Immersive Home 326 Platform is affected.
- Version IPQ4018 is affected.
- Version IPQ4019 is affected.
- Version IPQ4028 is affected.
- Version IPQ4029 is affected.
- Version IPQ5010 is affected.
- Version IPQ5028 is affected.
- Version IPQ5300 is affected.
- Version IPQ5302 is affected.
- Version IPQ5312 is affected.
- Version IPQ5332 is affected.
- Version IPQ6000 is affected.
- Version IPQ6005 is affected.
- Version IPQ6010 is affected.
- Version IPQ6018 is affected.
- Version IPQ6028 is affected.
- Version IPQ8062 is affected.
- Version IPQ8064 is affected.
- Version IPQ8065 is affected.
- Version IPQ8066 is affected.
- Version IPQ8068 is affected.
- Version IPQ8069 is affected.
- Version IPQ8070 is affected.
- Version IPQ8070A is affected.
- Version IPQ8071 is affected.
- Version IPQ8071A is affected.
- Version IPQ8072 is affected.
- Version IPQ8072A is affected.
- Version IPQ8074 is affected.
- Version IPQ8074A is affected.
- Version IPQ8076 is affected.
- Version IPQ8076A is affected.
- Version IPQ8078 is affected.
- Version IPQ8078A is affected.
- Version IPQ8173 is affected.
- Version IPQ8174 is affected.
- Version IPQ9008 is affected.
- Version IPQ9048 is affected.
- Version IPQ9554 is affected.
- Version IPQ9570 is affected.
- Version IPQ9574 is affected.
- Version MDM8207 is affected.
- Version MDM9205S is affected.
- Version MDM9250 is affected.
- Version MDM9628 is affected.
- Version MDM9640 is affected.
- Version MDM9645 is affected.
- Version MDM9650 is affected.
- Version MSM8996AU is affected.
- Version PM8937 is affected.
- Version PMP8074 is affected.
- Version Qualcomm 215 Mobile Platform is affected.
- Version Qualcomm Video Collaboration VC1 Platform is affected.
- Version Qualcomm Video Collaboration VC3 Platform is affected.
- Version Qualcomm Video Collaboration VC5 Platform is affected.
- Version QXM8083 is affected.
- Version Robotics RB2 Platform is affected.
- Version Robotics RB3 Platform is affected.
- Version Robotics RB5 Platform is affected.
- Version SA2150P is affected.
- Version SA4150P is affected.
- Version SA4155P is affected.
- Version SA6145P is affected.
- Version SA6150P is affected.
- Version SA6155 is affected.
- Version SA6155P is affected.
- Version SA7255P is affected.
- Version SA7775P is affected.
- Version SA8145P is affected.
- Version SA8150P is affected.
- Version SA8155 is affected.
- Version SA8155P is affected.
- Version SA8195P is affected.
- Version SA8255P is affected.
- Version SA8295P is affected.
- Version SA8530P is affected.
- Version SA8540P is affected.
- Version SA8620P is affected.
- Version SA8650P is affected.
- Version SA8770P is affected.
- Version SA8775P is affected.
- Version SA9000P is affected.
- Version SC8180X+SDX55 is affected.
- Version SC8380XP is affected.
- Version SD 455 is affected.
- Version SD 675 is affected.
- Version SD 8 Gen1 5G is affected.
- Version SD 8CX is affected.
- Version SD460 is affected.
- Version SD626 is affected.
- Version SD660 is affected.
- Version SD662 is affected.
- Version SD670 is affected.
- Version SD675 is affected.
- Version SD730 is affected.
- Version SD820 is affected.
- Version SD821 is affected.
- Version SD835 is affected.
- Version SD855 is affected.
- Version SD865 5G is affected.
- Version SD888 is affected.
- Version SDM429W is affected.
- Version SDX20M is affected.
- Version SDX55 is affected.
- Version SDX57M is affected.
- Version SDX61 is affected.
- Version SDX65M is affected.
- Version SDX71M is affected.
- Version SDX80M is affected.
- Version SG4150P is affected.
- Version SG8275P is affected.
- Version SM4125 is affected.
- Version SM4635 is affected.
- Version SM6250 is affected.
- Version SM6250P is affected.
- Version SM6370 is affected.
- Version SM6650 is affected.
- Version SM7250P is affected.
- Version SM7315 is affected.
- Version SM7325P is affected.
- Version SM7635 is affected.
- Version SM7675 is affected.
- Version SM7675P is affected.
- Version SM8550P is affected.
- Version SM8635 is affected.
- Version SM8635P is affected.
- Version SM8650Q is affected.
- Version SM8735 is affected.
- Version SM8750 is affected.
- Version SM8750P is affected.
- Version Smart Audio 400 Platform is affected.
- Version Smart Display 200 Platform (APQ5053-AA) is affected.
- Version Snapdragon 1100 Wearable Platform is affected.
- Version Snapdragon 1200 Wearable Platform is affected.
- Version Snapdragon 4 Gen 1 Mobile Platform is affected.
- Version Snapdragon 4 Gen 2 Mobile Platform is affected.
- Version Snapdragon 425 Mobile Platform is affected.
- Version Snapdragon 427 Mobile Platform is affected.
- Version Snapdragon 429 Mobile Platform is affected.
- Version Snapdragon 430 Mobile Platform is affected.
- Version Snapdragon 435 Mobile Platform is affected.
- Version Snapdragon 439 Mobile Platform is affected.
- Version Snapdragon 450 Mobile Platform is affected.
- Version Snapdragon 855 Mobile Platform is affected.
- Version Snapdragon 855+/860 Mobile Platform (SM8150-AC) is affected.
- Version Snapdragon 865 5G Mobile Platform is affected.
- Version Snapdragon 865+ 5G Mobile Platform (SM8250-AB) is affected.
- Version Snapdragon 870 5G Mobile Platform (SM8250-AC) is affected.
- Version Snapdragon 888 5G Mobile Platform is affected.
- Version Snapdragon 888+ 5G Mobile Platform (SM8350-AC) is affected.
- Version Snapdragon 8c Compute Platform (SC8180X-AD) "Poipu Lite" is affected.
- Version Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite" is affected.
- Version Snapdragon 8cx Compute Platform (SC8180X-AA, AB) is affected.
- Version Snapdragon 8cx Compute Platform (SC8180XP-AC, AF) "Poipu Pro" is affected.
- Version Snapdragon 8cx Gen 2 5G Compute Platform (SC8180X-AC, AF) "Poipu Pro" is affected.
- Version Snapdragon 8cx Gen 2 5G Compute Platform (SC8180XP-AA, AB) is affected.
- Version Snapdragon 8cx Gen 3 Compute Platform (SC8280XP-AB, BB) is affected.
- Version Snapdragon AR1 Gen 1 Platform is affected.
- Version Snapdragon AR1 Gen 1 Platform "Luna1" is affected.
- Version Snapdragon AR2 Gen 1 Platform is affected.
- Version Snapdragon Auto 5G Modem-RF is affected.
- Version Snapdragon Auto 5G Modem-RF Gen 2 is affected.
- Version Snapdragon W5+ Gen 1 Wearable Platform is affected.
- Version Snapdragon Wear 1300 Platform is affected.
- Version Snapdragon Wear 4100+ Platform is affected.
- Version Snapdragon X12 LTE Modem is affected.
- Version Snapdragon X20 LTE Modem is affected.
- Version Snapdragon X24 LTE Modem is affected.
- Version Snapdragon X35 5G Modem-RF System is affected.
- Version Snapdragon X5 LTE Modem is affected.
- Version Snapdragon X50 5G Modem-RF System is affected.
- Version Snapdragon X55 5G Modem-RF System is affected.
- Version Snapdragon X62 5G Modem-RF System is affected.
- Version Snapdragon X65 5G Modem-RF System is affected.
- Version Snapdragon X70 Modem-RF System is affected.
- Version Snapdragon X72 5G Modem-RF System is affected.
- Version Snapdragon X75 5G Modem-RF System is affected.
- Version Snapdragon XR1 Platform is affected.
- Version Snapdragon XR2 5G Platform is affected.
- Version Snapdragon XR2+ Gen 1 Platform is affected.
- Version Snapdragon Auto 4G Modem is affected.
- Version SRV1H is affected.
- Version SRV1L is affected.
- Version SRV1M is affected.
- Version SSG2115P is affected.
- Version SSG2125P is affected.
- Version SW5100 is affected.
- Version SW5100P is affected.
- Version SXR1120 is affected.
- Version SXR1230P is affected.
- Version SXR2130 is affected.
- Version SXR2230P is affected.
- Version SXR2250P is affected.
- Version SXR2330P is affected.
- Version TalynPlus is affected.
- Version Vision Intelligence 100 Platform (APQ8053-AA) is affected.
- Version Vision Intelligence 200 Platform (APQ8053-AC) is affected.
- Version Vision Intelligence 300 Platform is affected.
- Version Vision Intelligence 400 Platform is affected.
- Version WCD9306 is affected.
- Version WCD9326 is affected.
- Version WCD9330 is affected.
- Version WCD9335 is affected.
- Version WCD9340 is affected.
- Version WCD9341 is affected.
- Version WCD9360 is affected.
- Version WCD9370 is affected.
- Version WCD9371 is affected.
- Version WCD9375 is affected.
- Version WCD9378 is affected.
- Version WCD9380 is affected.
- Version WCD9385 is affected.
- Version WCD9390 is affected.
- Version WCD9395 is affected.
- Version WCN3610 is affected.
- Version WCN3615 is affected.
- Version WCN3620 is affected.
- Version WCN3660 is affected.
- Version WCN3660B is affected.
- Version WCN3680 is affected.
- Version WCN3680B is affected.
- Version WCN3910 is affected.
- Version WCN3950 is affected.
- Version WCN3980 is affected.
- Version WCN3988 is affected.
- Version WCN3990 is affected.
- Version WCN3999 is affected.
- Version WCN6450 is affected.
- Version WCN6650 is affected.
- Version WCN6740 is affected.
- Version WCN6755 is affected.
- Version WCN7750 is affected.
- Version WCN7860 is affected.
- Version WCN7861 is affected.
- Version WCN7880 is affected.
- Version WCN7881 is affected.
- Version WSA8810 is affected.
- Version WSA8815 is affected.
- Version WSA8830 is affected.
- Version WSA8832 is affected.
- Version WSA8835 is affected.
- Version WSA8840 is affected.
- Version WSA8845 is affected.
- Version WSA8845H is affected.
Exploit Probability
EPSS
0.01%
Percentile
1.16%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.