CVE-2025-27075

Memory corruption while processing IOCTL command with larger buffer in Bluetooth Host.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6200:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6800:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:qualcomm:qca6420_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6420:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:qualcomm:qca6430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6430:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:qualcomm:qcm5430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm5430:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:qualcomm:qcm6490_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm6490:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:qualcomm:qcs5430_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs5430:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:qualcomm:qcs6490_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs6490:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:video_collaboration_vc3_platform:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sc8380xp:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_7c\+_gen_3_compute_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_7c\+_gen_3_compute:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8c_compute_platform_\(sc8180x-ad\):-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-aa\):-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-ab\):-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\):-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\):-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\):-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\):-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 32 (hide)

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 33 (hide)

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

Configuration 34 (hide)

AND

cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*

Configuration 35 (hide)

AND

cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*

Configuration 36 (hide)

AND

cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*

History

18 Aug 2025, 18:26

Type	Values Removed	Values Added
CPE		cpe:2.3:o:qualcomm:snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmware:-:::::::* cpe:2.3:h:qualcomm:qcm5430:-:::::::* cpe:2.3:h:qualcomm:wsa8835:-:::::::* cpe:2.3:h:qualcomm:video_collaboration_vc3_platform:-:::::::* cpe:2.3:o:qualcomm:wsa8840_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8815:-:::::::* cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9385:-:::::::* cpe:2.3:h:qualcomm:fastconnect_7800:-:::::::* cpe:2.3:o:qualcomm:wsa8830_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\):-:::::::* cpe:2.3:h:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-aa\):-:::::::* cpe:2.3:o:qualcomm:qcm6490_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8810_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8845_firmware:-:::::::* cpe:2.3:h:qualcomm:sc8380xp:-:::::::* cpe:2.3:h:qualcomm:wcd9370:-:::::::* cpe:2.3:o:qualcomm:qca6420_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8830:-:::::::* cpe:2.3:h:qualcomm:fastconnect_6900:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\):-:::::::* cpe:2.3:h:qualcomm:wcd9380:-:::::::* cpe:2.3:o:qualcomm:wcd9341_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9340:-:::::::* cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8c_compute_platform_\(sc8180x-ad\):-:::::::* cpe:2.3:o:qualcomm:wcd9340_firmware:-:::::::* cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8840:-:::::::* cpe:2.3:o:qualcomm:aqt1000_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmware:-:::::::* cpe:2.3:h:qualcomm:fastconnect_6700:-:::::::* cpe:2.3:o:qualcomm:qca6391_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9385_firmware:-:::::::* cpe:2.3:h:qualcomm:fastconnect_6200:-:::::::* cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8835_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmware:-:::::::* cpe:2.3:h:qualcomm:wsa8845:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\):-:::::::* cpe:2.3:o:qualcomm:wcd9380_firmware:-:::::::* cpe:2.3:o:qualcomm:wsa8845h_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9375_firmware:-:::::::* cpe:2.3:o:qualcomm:qcs6490_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6430:-:::::::* cpe:2.3:h:qualcomm:wcd9375:-:::::::* cpe:2.3:h:qualcomm:qcs6490:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_7c\+_gen_3_compute_firmware:-:::::::* cpe:2.3:o:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmware:-:::::::* cpe:2.3:o:qualcomm:qca6430_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\):-:::::::* cpe:2.3:o:qualcomm:qcs5430_firmware:-:::::::* cpe:2.3:o:qualcomm:wcd9370_firmware:-:::::::* cpe:2.3:h:qualcomm:qcs5430:-:::::::* cpe:2.3:o:qualcomm:qcm5430_firmware:-:::::::* cpe:2.3:h:qualcomm:wcd9341:-:::::::* cpe:2.3:o:qualcomm:wsa8815_firmware:-:::::::* cpe:2.3:h:qualcomm:fastconnect_6800:-:::::::* cpe:2.3:h:qualcomm:snapdragon_8cx_compute_platform_\(sc8180x-ab\):-:::::::* cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:::::::* cpe:2.3:h:qualcomm:snapdragon_7c\+_gen_3_compute:-:::::::* cpe:2.3:h:qualcomm:wsa8845h:-:::::::* cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6391:-:::::::* cpe:2.3:h:qualcomm:qcm6490:-:::::::* cpe:2.3:h:qualcomm:wsa8810:-:::::::* cpe:2.3:o:qualcomm:sc8380xp_firmware:-:::::::* cpe:2.3:h:qualcomm:qca6420:-:::::::* cpe:2.3:h:qualcomm:aqt1000:-:::::::*
References	~~() https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html -~~	() https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html - Vendor Advisory
First Time		Qualcomm wcd9341 Qualcomm fastconnect 6900 Qualcomm wcd9341 Firmware Qualcomm snapdragon 8cx Gen 2 5g Compute Platform \(sc8180x-af\) Firmware Qualcomm snapdragon 7c\+ Gen 3 Compute Qualcomm snapdragon 8cx Gen 3 Compute Platform \(sc8280xp-ab\) Firmware Qualcomm qcs6490 Firmware Qualcomm snapdragon 8cx Gen 3 Compute Platform \(sc8280xp-bb\) Qualcomm snapdragon 8cx Compute Platform \(sc8180x-aa\) Firmware Qualcomm wcd9340 Qualcomm wcd9370 Firmware Qualcomm snapdragon 8c Compute Platform \(sc8180x-ad\) Qualcomm fastconnect 7800 Qualcomm qcs6490 Qualcomm wcd9340 Firmware Qualcomm aqt1000 Qualcomm video Collaboration Vc3 Platform Firmware Qualcomm wcd9370 Qualcomm wsa8845 Firmware Qualcomm wcd9380 Qualcomm qca6420 Firmware Qualcomm qcm6490 Firmware Qualcomm snapdragon 8cx Gen 3 Compute Platform \(sc8280xp-bb\) Firmware Qualcomm wsa8845h Qualcomm qcs5430 Qualcomm wsa8845 Qualcomm fastconnect 6900 Firmware Qualcomm snapdragon 8cx Gen 2 5g Compute Platform \(sc8180x-af\) Qualcomm wsa8815 Firmware Qualcomm Qualcomm wsa8835 Qualcomm snapdragon 8cx Compute Platform \(sc8180x-ab\) Firmware Qualcomm fastconnect 6200 Qualcomm qcm6490 Qualcomm fastconnect 6700 Firmware Qualcomm wsa8815 Qualcomm wcd9385 Firmware Qualcomm wsa8830 Qualcomm video Collaboration Vc3 Platform Qualcomm wcd9375 Qualcomm snapdragon 7c\+ Gen 3 Compute Firmware Qualcomm fastconnect 6800 Qualcomm wcd9385 Qualcomm fastconnect 6200 Firmware Qualcomm qca6420 Qualcomm aqt1000 Firmware Qualcomm qcm5430 Firmware Qualcomm fastconnect 7800 Firmware Qualcomm wsa8810 Firmware Qualcomm wcd9375 Firmware Qualcomm wcd9380 Firmware Qualcomm wsa8840 Qualcomm wsa8835 Firmware Qualcomm qcm5430 Qualcomm wsa8840 Firmware Qualcomm snapdragon 8cx Gen 2 5g Compute Platform \(sc8180x-ac\) Firmware Qualcomm fastconnect 6800 Firmware Qualcomm wsa8810 Qualcomm wsa8845h Firmware Qualcomm snapdragon 8cx Compute Platform \(sc8180x-aa\) Qualcomm fastconnect 6700 Qualcomm qca6430 Qualcomm snapdragon 8cx Gen 3 Compute Platform \(sc8280xp-ab\) Qualcomm wsa8830 Firmware Qualcomm snapdragon 8cx Gen 2 5g Compute Platform \(sc8180x-ac\) Qualcomm qca6430 Firmware Qualcomm snapdragon 8cx Compute Platform \(sc8180x-ab\) Qualcomm snapdragon 8c Compute Platform \(sc8180x-ad\) Firmware Qualcomm sc8380xp Qualcomm qca6391 Firmware Qualcomm qca6391 Qualcomm sc8380xp Firmware Qualcomm qcs5430 Firmware

06 Aug 2025, 20:23

Type	Values Removed	Values Added
Summary		(es) Corrupción de memoria al procesar el comando IOCTL con un búfer más grande en el host Bluetooth.

06 Aug 2025, 08:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-08-06 08:15

Updated : 2025-08-18 18:26

NVD link : CVE-2025-27075

Mitre link : CVE-2025-27075

CVE.ORG link : CVE-2025-27075

JSON object : View

Products Affected

qualcomm

wsa8845
wsa8830
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)_firmware
wsa8835_firmware
qcm5430
fastconnect_6200_firmware
wsa8840
qcs6490_firmware
qca6430
fastconnect_6200
wcd9385_firmware
snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)_firmware
wcd9341
qcm5430_firmware
wsa8840_firmware
snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)
video_collaboration_vc3_platform_firmware
fastconnect_6800_firmware
snapdragon_8c_compute_platform_\(sc8180x-ad\)
wsa8815
snapdragon_7c\+_gen_3_compute_firmware
qcm6490
video_collaboration_vc3_platform
qcm6490_firmware
wsa8810_firmware
snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-ac\)
wcd9375
wcd9380_firmware
wcd9370_firmware
qcs6490
wsa8810
wsa8815_firmware
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)
fastconnect_7800
wcd9375_firmware
snapdragon_8cx_compute_platform_\(sc8180x-aa\)
wcd9370
snapdragon_7c\+_gen_3_compute
snapdragon_8cx_compute_platform_\(sc8180x-ab\)_firmware
qca6391
wsa8845_firmware
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-bb\)
wsa8845h_firmware
snapdragon_8cx_compute_platform_\(sc8180x-aa\)_firmware
qca6420_firmware
wcd9341_firmware
qcs5430
wsa8835
wcd9340_firmware
wcd9340
sc8380xp
aqt1000_firmware
qca6391_firmware
wsa8830_firmware
fastconnect_7800_firmware
wsa8845h
aqt1000
fastconnect_6900
qcs5430_firmware
fastconnect_6700
wcd9380
wcd9385
snapdragon_8cx_gen_2_5g_compute_platform_\(sc8180x-af\)_firmware
fastconnect_6900_firmware
fastconnect_6700_firmware
qca6430_firmware
snapdragon_8c_compute_platform_\(sc8180x-ad\)_firmware
qca6420
fastconnect_6800
sc8380xp_firmware
snapdragon_8cx_gen_3_compute_platform_\(sc8280xp-ab\)_firmware
snapdragon_8cx_compute_platform_\(sc8180x-ab\)

CWE

CWE-129

Improper Validation of Array Index

7.8 /10