← Back to CVEs
CVE-2025-27036
MEDIUM6.1
Description
Information disclosure when Video engine escape input data is less than expected minimum size.
CVE Details
CVSS v3.1 Score6.1
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published9/24/2025
Last Modified9/25/2025
Sourcenvd
Honeypot Sightings0
Affected Products
qualcomm:fastconnect_6700qualcomm:fastconnect_6700_firmwarequalcomm:fastconnect_6900qualcomm:fastconnect_6900_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:qcm5430qualcomm:qcm5430_firmwarequalcomm:qcm6490qualcomm:qcm6490_firmwarequalcomm:qcs5430qualcomm:qcs5430_firmwarequalcomm:qcs6490qualcomm:qcs6490_firmwarequalcomm:sc8380xpqualcomm:sc8380xp_firmwarequalcomm:snapdragon_7c\+_gen_3_computequalcomm:snapdragon_7c\+_gen_3_compute_firmwarequalcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmwarequalcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmwarequalcomm:video_collaboration_vc3_platformqualcomm:video_collaboration_vc3_platform_firmwarequalcomm:wcd9370qualcomm:wcd9370_firmwarequalcomm:wcd9375qualcomm:wcd9375_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcd9385qualcomm:wcd9385_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmware
Weaknesses (CWE)
CWE-126
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html(product-security@qualcomm.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.