CVE-2025-27039

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-27039
Memory corruption may occur while processing IOCTL call for DMM/WARPNCC CONFIG request.

6.6 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 4.7

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html Vendor Advisory Patch
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
History

15 Oct 2025, 19:04

Type Values Removed Values Added
First Time Qualcomm fastconnect 7800 Firmware
Qualcomm sxr2250p
Qualcomm
Qualcomm wsa8832
Qualcomm wsa8835 Firmware
Qualcomm wcd9380
Qualcomm fastconnect 7800
Qualcomm sxr2230p
Qualcomm wsa8835
Qualcomm sxr2230p Firmware
Qualcomm fastconnect 6900 Firmware
Qualcomm wsa8830 Firmware
Qualcomm wsa8832 Firmware
Qualcomm wcd9380 Firmware
Qualcomm fastconnect 6900
Qualcomm wsa8830
Qualcomm wcd9385
Qualcomm wcd9385 Firmware
Qualcomm sxr2250p Firmware
CPE cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
References () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html - () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html - Vendor Advisory, Patch

09 Oct 2025, 04:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-10-09 04:16

Updated : 2025-10-15 19:04

NVD link : CVE-2025-27039

Mitre link : CVE-2025-27039

CVE.ORG link : CVE-2025-27039

JSON object : View

Products Affected

qualcomm

  • wcd9385_firmware
  • wsa8830
  • fastconnect_6900_firmware
  • wsa8832
  • wcd9385
  • sxr2250p
  • wcd9380
  • sxr2230p
  • wsa8835
  • wcd9380_firmware
  • sxr2230p_firmware
  • wsa8835_firmware
  • fastconnect_7800_firmware
  • fastconnect_7800
  • wsa8830_firmware
  • fastconnect_6900
  • sxr2250p_firmware
  • wsa8832_firmware
CWE
CWE-390

Detection of Error Condition Without Action