CVE-2025-27031

HIGH EPSS 0.4%
Published Jun 3, 20251y ago ยท Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Jun 3, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
0.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 42

VendorProductVersionRange
qualcommfastconnect_6700_firmware*any
qualcommfastconnect_6700*any
qualcommfastconnect_6900_firmware*any
qualcommfastconnect_6900*any
qualcommfastconnect_7800_firmware*any
qualcommfastconnect_7800*any
qualcommqcm5430_firmware*any
qualcommqcm5430*any
qualcommqcm6490_firmware*any
qualcommqcm6490*any
qualcommqcs5430_firmware*any
qualcommqcs5430*any
qualcommqcs6490_firmware*any
qualcommqcs6490*any
qualcommvideo_collaboration_vc3_platform_firmware*any
qualcommvideo_collaboration_vc3_platform*any
qualcommsc8380xp_firmware*any
qualcommsc8380xp*any
qualcommsnapdragon_7c\+_gen_3_compute_firmware*any
qualcommsnapdragon_7c\+_gen_3_compute*any
qualcommsnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware*any
qualcommsnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)*any
qualcommsnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware*any
qualcommsnapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)*any
qualcommwcd9370_firmware*any
qualcommwcd9370*any
qualcommwcd9375_firmware*any
qualcommwcd9375*any
qualcommwcd9380_firmware*any
qualcommwcd9380*any
qualcommwcd9385_firmware*any
qualcommwcd9385*any
qualcommwsa8830_firmware*any
qualcommwsa8830*any
qualcommwsa8835_firmware*any
qualcommwsa8835*any
qualcommwsa8840_firmware*any
qualcommwsa8840*any
qualcommwsa8845_firmware*any
qualcommwsa8845*any
qualcommwsa8845h_firmware*any
qualcommwsa8845h*any

References 1

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.