CVE-2025-27064 | THREATINT

Description

Information disclosure while registering commands from clients with diag through diagHal.

PUBLISHED Reserved 2025-02-18 | Published 2025-11-04 | Updated 2025-11-04 | Assigner qualcomm

MEDIUM: 6.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

Problem types

CWE-126 Buffer Over-read

Product status

Default status

unaffected

FastConnect 6900

affected

FastConnect 7800

affected

Immersive Home 3210 Platform

affected

Immersive Home 326 Platform

affected

IPQ5300

affected

IPQ5302

affected

IPQ5312

affected

IPQ5332

affected

IPQ5424

affected

IPQ9008

affected

IPQ9048

affected

IPQ9554

affected

IPQ9570

affected

IPQ9574

affected

MDM9628

affected

QAM8255P

affected

QAM8650P

affected

QCA0000

affected

QCA6564A

affected

QCA6564AU

affected

QCA6574A

affected

QCA6574AU

affected

QCA6584AU

affected

QCA6595AU

affected

QCA6678AQ

affected

QCA6688AQ

affected

QCA6698AQ

affected

QCA8075

affected

QCA8080

affected

QCA8081

affected

QCA8082

affected

QCA8084

affected

QCA8085

affected

QCA8101

affected

QCA8102

affected

QCA8111

affected

QCA8112

affected

QCA8384

affected

QCA8385

affected

QCA8386

affected

QCA9367

affected

QCA9377

affected

QCF8000

affected

QCF8001

affected

QCN5124

affected

QCN5224

affected

QCN6402

affected

QCN6412

affected

QCN6422

affected

QCN6432

affected

QCN9000

affected

QCN9012

affected

QCN9024

affected

QCN9074

affected

QCN9160

affected

QCN9274

affected

QXM8083

affected

SA4150P

affected

SA4155P

affected

SA6155P

affected

SA7255P

affected

SA8155P

affected

SA8195P

affected

SA8255P

affected

SA8530P

affected

SA8540P

affected

SA8650P

affected

SA9000P

affected

Snapdragon 8 Gen 1 Mobile Platform

affected

Snapdragon Auto 5G Modem-RF Gen 2

affected

SXR2250P

affected

WCD9380

affected

WCN3660B

affected

WCN3680B

affected

WCN3980

affected

WSA8830

affected

WSA8835

affected

References

docs.qualcomm.com/...itybulletin/november-2025-bulletin.html

cve.org (CVE-2025-27064)

nvd.nist.gov (CVE-2025-27064)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu