Qualcomm Patches Three Zero-Day Vulnerabilities Exploited in Targeted Attacks

Qualcomm has fixed three zero-day vulnerabilities that were exploited in limited, targeted attacks. These vulnerabilities, identified by the CVE-2025-21479, CVE-2025-21480, and CVE-2025-27038, were reported to Qualcomm by the Google Android security team. According to the Google Threat Analysis Group, these vulnerabilities could be exploited in a limited and targeted manner.