CVE-2025-27031

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions The product name cannot be determined.

Description The issue involves memory corruption during the processing of IOCTL commands. This occurs when the buffer in write loopback mode is accessed after being freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-06486

CVE-2025-27031

Affected Products

Snapdragon

Fastconnect 6700 Firmware

Fastconnect 6900 Firmware

Fastconnect 7800 Firmware

Qcs5430 Firmware

Qcs6490 Firmware

Sc8380Xp Firmware

Snapdragon 7C+ Gen 3 Compute Firmware

Snapdragon 8Cx Gen 3 Compute Platform (Sc8280Xp-Ab

Snapdragon 8Cx Gen 3 Compute Platform (Sc8280Xp-Bb) Firmware

Video Collaboration Vc3 Platform Firmware

Wcd9370 Firmware

Wcd9375 Firmware

Wcd9380 Firmware

Wcd9385 Firmware

Wsa8830 Firmware

Wsa8835 Firmware

Wsa8840 Firmware

Wsa8845 Firmware

CVE-2025-27031

Weakness Enumeration

Related Identifiers

Affected Products

References · 9