CVE-2025-27039

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-27039
Memory corruption may occur while processing IOCTL call for DMM/WARPNCC CONFIG request.

6.6 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 4.7

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html Vendor Advisory Patch
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
History

15 Oct 2025, 19:04

Type Values Removed Values Added
CPE cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:sxr2250p:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:qualcomm:sxr2250p_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
References () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html - () https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html - Vendor Advisory, Patch
First Time Qualcomm wcd9385 Firmware
Qualcomm fastconnect 7800 Firmware
Qualcomm wsa8832
Qualcomm wsa8835 Firmware
Qualcomm fastconnect 6900
Qualcomm wcd9380
Qualcomm wcd9380 Firmware
Qualcomm sxr2230p
Qualcomm sxr2230p Firmware
Qualcomm sxr2250p
Qualcomm wsa8835
Qualcomm
Qualcomm wcd9385
Qualcomm wsa8832 Firmware
Qualcomm sxr2250p Firmware
Qualcomm wsa8830 Firmware
Qualcomm fastconnect 6900 Firmware
Qualcomm wsa8830
Qualcomm fastconnect 7800

09 Oct 2025, 04:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-10-09 04:16

Updated : 2025-10-15 19:04

NVD link : CVE-2025-27039

Mitre link : CVE-2025-27039

CVE.ORG link : CVE-2025-27039

JSON object : View

Products Affected

qualcomm

  • wcd9385
  • fastconnect_7800
  • wsa8832_firmware
  • wsa8830_firmware
  • sxr2230p_firmware
  • wcd9380
  • sxr2250p_firmware
  • fastconnect_7800_firmware
  • wsa8835
  • fastconnect_6900_firmware
  • sxr2250p
  • wsa8830
  • wcd9385_firmware
  • wsa8835_firmware
  • fastconnect_6900
  • wcd9380_firmware
  • wsa8832
  • sxr2230p
CWE
CWE-390

Detection of Error Condition Without Action