CVE-2025-27068

Memory corruption while processing an IOCTL command with an arbitrary address.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6200:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sc8380xp:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:sm6250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6250:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_7c_compute_platform_\(sc7180-ac\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_7c_compute_platform_\(sc7180-ac\):-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\":-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\):-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\):-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-08-06 08:15

Updated : 2025-08-18 18:27

NVD link : CVE-2025-27068

Mitre link : CVE-2025-27068

CVE.ORG link : CVE-2025-27068

JSON object : View

Products Affected

qualcomm

fastconnect_7800_firmware
fastconnect_6900_firmware
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)
wsa8835
wsa8840
sm6250_firmware
wsa8830
sm6250
wsa8845
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware
wcd9380_firmware
wsa8830_firmware
wsa8845_firmware
wcd9380
sc8380xp_firmware
wsa8840_firmware
sc8380xp
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware
fastconnect_7800
snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"_firmware
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)
snapdragon_7c_compute_platform_\(sc7180-ac\)_firmware
wsa8835_firmware
wsa8845h
fastconnect_6200
fastconnect_6900
snapdragon_7c_gen_2_compute_platform_\(sc7180-ad\)_\"rennell_pro\"
wsa8845h_firmware
wcd9385
fastconnect_6200_firmware
snapdragon_7c_compute_platform_\(sc7180-ac\)
wcd9385_firmware

CWE

CWE-126

Buffer Over-read

7.8 /10