TROYANOSYVIRUS
Volver a CVEs

CVE-2025-27037

HIGH
7.8

Descripcion

Memory corruption while processing config_dev IOCTL when camera kernel driver drops its reference to CPU buffers.

Detalles CVE

Puntuacion CVSS v3.17.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueLOCAL
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado9/24/2025
Ultima modificacion9/25/2025
Fuentenvd
Avistamientos honeypot0

Productos afectados

qualcomm:fastconnect_6800qualcomm:fastconnect_6800_firmwarequalcomm:fastconnect_6900qualcomm:fastconnect_6900_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:qam8295pqualcomm:qam8295p_firmwarequalcomm:qca6391qualcomm:qca6391_firmwarequalcomm:qca6426qualcomm:qca6426_firmwarequalcomm:qca6436qualcomm:qca6436_firmwarequalcomm:qca6574auqualcomm:qca6574au_firmwarequalcomm:qca6696qualcomm:qca6696_firmwarequalcomm:qcn9074qualcomm:qcn9074_firmwarequalcomm:sa6145pqualcomm:sa6145p_firmwarequalcomm:sa6150pqualcomm:sa6150p_firmwarequalcomm:sa6155pqualcomm:sa6155p_firmwarequalcomm:sa8145pqualcomm:sa8145p_firmwarequalcomm:sa8150pqualcomm:sa8150p_firmwarequalcomm:sa8155pqualcomm:sa8155p_firmwarequalcomm:sa8195pqualcomm:sa8195p_firmwarequalcomm:sa8295pqualcomm:sa8295p_firmwarequalcomm:sd865_5gqualcomm:sd865_5g_firmwarequalcomm:snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)qualcomm:snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmwarequalcomm:snapdragon_865_5g_mobile_platformqualcomm:snapdragon_865_5g_mobile_platform_firmwarequalcomm:snapdragon_870_5g_mobile_platform_\(sm8250-ac\)qualcomm:snapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmwarequalcomm:snapdragon_8_gen_1_mobile_platformqualcomm:snapdragon_8_gen_1_mobile_platform_firmwarequalcomm:snapdragon_x55_5g_modem-rf_systemqualcomm:snapdragon_x55_5g_modem-rf_system_firmwarequalcomm:snapdragon_xr2_5g_platformqualcomm:snapdragon_xr2_5g_platform_firmwarequalcomm:sw5100qualcomm:sw5100_firmwarequalcomm:sw5100pqualcomm:sw5100p_firmwarequalcomm:sxr2130qualcomm:sxr2130_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcn3660bqualcomm:wcn3660b_firmwarequalcomm:wcn3680bqualcomm:wcn3680b_firmwarequalcomm:wcn3980qualcomm:wcn3980_firmwarequalcomm:wcn3988qualcomm:wcn3988_firmwarequalcomm:wsa8810qualcomm:wsa8810_firmwarequalcomm:wsa8815qualcomm:wsa8815_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmware

Debilidades (CWE)

CWE-416

Referencias

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html(product-security@qualcomm.com)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.