CVE-2025-27038 | THREATINT

Description

Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.

PUBLISHED Reserved 2025-02-18 | Published 2025-06-03 | Updated 2025-10-21 | Assigner qualcomm

HIGH: 7.5CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA Known Exploited Vulnerability

Date added 2025-06-03 | Due date 2025-06-24

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Problem types

CWE-416 Use After Free

Product status

Default status

unaffected

AR8031

affected

CSRA6620

affected

CSRA6640

affected

FastConnect 7800

affected

QCA2066

affected

QCA6391

affected

QCM6125

affected

QCM8550

affected

QCN9011

affected

QCN9012

affected

QCS6125

affected

QCS8550

affected

Qualcommr Video Collaboration VC1 Platform

affected

SM6475

affected

SM6650

affected

SM6650P

affected

SM7435

affected

SM7635

affected

SM7635P

affected

Smart Audio 400 Platform

affected

Snapdragon 4 Gen 2 Mobile Platform

affected

Snapdragon 6 Gen 1 Mobile Platform

affected

Snapdragon 680 4G Mobile Platform

affected

Snapdragon 685 4G Mobile Platform (SM6225-AD)

affected

Snapdragon W5+ Gen 1 Wearable Platform

affected

SW5100

affected

SW5100P

affected

WCD9335

affected

WCD9370

affected

WCD9375

affected

WCD9378

affected

WCD9385

affected

WCD9395

affected

WCN3950

affected

WCN3980

affected

WCN3988

affected

WCN6650

affected

WCN6740

affected

WCN6755

affected

WSA8810

affected

WSA8815

affected

WSA8830

affected

WSA8832

affected

WSA8835

affected

References

www.cisa.gov/...erabilities-catalog?field_cve=CVE-2025-27038 government-resource

docs.qualcomm.com/...ecuritybulletin/june-2025-bulletin.html

cve.org (CVE-2025-27038)

nvd.nist.gov (CVE-2025-27038)

Download JSON