CVE-2025-27073

Published Aug 6, 2025

Last updated 8 months ago

CVSS high 7.5
Wlan

Overview

Description
Transient DOS while creating NDP instance.
Source
product-security@qualcomm.com
NVD status
Analyzed
Products
immersive_home_214_platform_firmware, immersive_home_216_platform_firmware, immersive_home_316_platform_firmware, immersive_home_318_platform_firmware, ipq5010_firmware, ipq5028_firmware, ipq6000_firmware, ipq6010_firmware, ipq6018_firmware, ipq6028_firmware, ipq8070a_firmware, ipq8071a_firmware, ipq8072a_firmware, ipq8074a_firmware, ipq8076_firmware, ipq8076a_firmware, ipq8078_firmware, ipq8078a_firmware, ipq8173_firmware, ipq8174_firmware, ipq9008_firmware, ipq9554_firmware, ipq9570_firmware, ipq9574_firmware, qam8255p_firmware, qam8650p_firmware, qam8775p_firmware, qamsrv1h_firmware, qamsrv1m_firmware, qca4024_firmware, qca6391_firmware, qca6426_firmware, qca6436_firmware, qca6554a_firmware, qca6564au_firmware, qca6574_firmware, qca6574a_firmware, qca6574au_firmware, qca6584au_firmware, qca6595_firmware, wsa8832_firmware, wsa8835_firmware, wsa8840_firmware, wsa8845_firmware, wsa8845h_firmware, ar8035_firmware, csr8811_firmware, fastconnect_6800_firmware, fastconnect_6900_firmware, fastconnect_7800_firmware, qca6595au_firmware, qca6678aq_firmware, qca6688aq_firmware, qca6696_firmware, qca6698aq_firmware, qca6777aq_firmware, qca6787aq_firmware, qca6797aq_firmware, qca8072_firmware, qca8075_firmware, qca8081_firmware, qca8082_firmware, qca8084_firmware, qca8085_firmware, qca8337_firmware, qca8386_firmware, qca9888_firmware, qca9889_firmware, qcc2073_firmware, qcc2076_firmware, qcc710_firmware, qcm8550_firmware, qcn5022_firmware, qcn5024_firmware, qcn5052_firmware, qcn5054_firmware, qcn5122_firmware, qcn5124_firmware, qcn5152_firmware, qcn5154_firmware, qcn5164_firmware, qcn6023_firmware, qcn6024_firmware, qcn6122_firmware, qcn6132_firmware, qcn6224_firmware, qcn6274_firmware, qcn9000_firmware, qcn9001_firmware, qcn9002_firmware, qcn9003_firmware, qcn9011_firmware, qcn9012_firmware, qcn9022_firmware, qcn9024_firmware, qcn9070_firmware, qcn9072_firmware, qcn9074_firmware, qcn9100_firmware, qcn9274_firmware, qcs8550_firmware, qfw7114_firmware, qfw7124_firmware, qmp1000_firmware, sa7255p_firmware, sa7775p_firmware, sa8255p_firmware, sa8620p_firmware, sa8650p_firmware, sa8770p_firmware, sa8775p_firmware, sa9000p_firmware, sc8380xp_firmware, sd_8_gen1_5g_firmware, sd865_5g_firmware, sg8275p_firmware, sm6650_firmware, sm6650p_firmware, sm7635_firmware, sm7675_firmware, sm7675p_firmware, sm8550p_firmware, sm8635_firmware, sm8635p_firmware, sm8650q_firmware, sm8735_firmware, sm8750_firmware, sm8750p_firmware, snapdragon_8_gen_1_mobile_platform_firmware, snapdragon_8_gen_2_mobile_platform_firmware, snapdragon_8_gen_3_mobile_platform_firmware, snapdragon_8\+_gen_2_mobile_platform_firmware, snapdragon_865_5g_mobile_platform_firmware, snapdragon_865\+_5g_mobile_platform_\(sm8250-ab\)_firmware, snapdragon_870_5g_mobile_platform_\(sm8250-ac\)_firmware, snapdragon_ar1_gen_1_platform_firmware, snapdragon_ar1_gen_1_platform_\"luna1\"_firmware, snapdragon_ar2_gen_1_platform_firmware, snapdragon_auto_5g_modem-rf_gen_2_firmware, snapdragon_x72_5g_modem-rf_system_firmware, snapdragon_x75_5g_modem-rf_system_firmware, snapdragon_xr2_5g_platform_firmware, srv1h_firmware, srv1m_firmware, ssg2115p_firmware, ssg2125p_firmware, sxr1230p_firmware, sxr2230p_firmware, sxr2250p_firmware, sxr2330p_firmware, wcd9340_firmware, wcd9370_firmware, wcd9375_firmware, wcd9378_firmware, wcd9380_firmware, wcd9385_firmware, wcd9390_firmware, wcd9395_firmware, wcn6450_firmware, wcn6650_firmware, wcn6740_firmware, wcn6755_firmware, wcn7750_firmware, wcn7860_firmware, wcn7861_firmware, wcn7880_firmware, wcn7881_firmware, wsa8810_firmware, wsa8815_firmware, wsa8830_firmware

Risk scores

CVSS 3.1

Type
Primary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
HIGH

Weaknesses

product-security@qualcomm.com
CWE-617

Social media

Hype score
Not currently trending

Configurations

Related CVEs

  1. Memory Corruption when handling power management requests with improperly sized input/output buffers.CVE-2026-21382
  2. Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.CVE-2026-21381
  3. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21376
  4. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21378
  5. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.CVE-2026-21375

References

Sources include official advisories and independent security research.