CVE-2025-27037

HIGH EPSS 0.3%
Published Sep 24, 20259mo ago ยท Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Sep 24, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference to CPU buffers.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
0.3% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 74

VendorProductVersionRange
qualcommfastconnect_6800_firmware*any
qualcommfastconnect_6800*any
qualcommfastconnect_6900_firmware*any
qualcommfastconnect_6900*any
qualcommfastconnect_7800_firmware*any
qualcommfastconnect_7800*any
qualcommqam8295p_firmware*any
qualcommqam8295p*any
qualcommqca6391_firmware*any
qualcommqca6391*any
qualcommqca6426_firmware*any
qualcommqca6426*any
qualcommqca6436_firmware*any
qualcommqca6436*any
qualcommqca6574au_firmware*any
qualcommqca6574au*any
qualcommqca6696_firmware*any
qualcommqca6696*any
qualcommqcn9074_firmware*any
qualcommqcn9074*any
qualcommsa6145p_firmware*any
qualcommsa6145p*any
qualcommsa6150p_firmware*any
qualcommsa6150p*any
qualcommsa6155p_firmware*any
qualcommsa6155p*any
qualcommsa8145p_firmware*any
qualcommsa8145p*any
qualcommsa8150p_firmware*any
qualcommsa8150p*any
qualcommsa8155p_firmware*any
qualcommsa8155p*any
qualcommsa8195p_firmware*any
qualcommsa8195p*any
qualcommsa8295p_firmware*any
qualcommsa8295p*any
qualcommsd865_5g_firmware*any
qualcommsd865_5g*any
qualcommsnapdragon_8_gen_1_mobile_platform_firmware*any
qualcommsnapdragon_8_gen_1_mobile_platform*any
qualcommsnapdragon_865_5g_mobile_platform_firmware*any
qualcommsnapdragon_865_5g_mobile_platform*any
qualcommsnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmware*any
qualcommsnapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)*any
qualcommsnapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmware*any
qualcommsnapdragon_870_5g_mobile_platform_\(sm8250-ac\)*any
qualcommsnapdragon_x55_5g_modem-rf_system_firmware*any
qualcommsnapdragon_x55_5g_modem-rf_system*any
qualcommsnapdragon_xr2_5g_platform_firmware*any
qualcommsnapdragon_xr2_5g_platform*any
qualcommsw5100_firmware*any
qualcommsw5100*any
qualcommsw5100p_firmware*any
qualcommsw5100p*any
qualcommsxr2130_firmware*any
qualcommsxr2130*any
qualcommwcd9380_firmware*any
qualcommwcd9380*any
qualcommwcn3660b_firmware*any
qualcommwcn3660b*any
qualcommwcn3680b_firmware*any
qualcommwcn3680b*any
qualcommwcn3980_firmware*any
qualcommwcn3980*any
qualcommwcn3988_firmware*any
qualcommwcn3988*any
qualcommwsa8810_firmware*any
qualcommwsa8810*any
qualcommwsa8815_firmware*any
qualcommwsa8815*any
qualcommwsa8830_firmware*any
qualcommwsa8830*any
qualcommwsa8835_firmware*any
qualcommwsa8835*any

References 1

  • docs.qualcomm.com https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.