#VU110043 Buffer over-read in Qualcomm products - CVE-2025-27029

Cybersecurity Help s.r.o.

Published: 2025-06-02

Vulnerability identifier: #VU110043

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2025-27029

CWE-ID: CWE-126

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
FastConnect 7800
Mobile applications / Mobile firmware & hardware
Immersive Home 3210 Platform
Mobile applications / Mobile firmware & hardware
Immersive Home 326 Platform
Mobile applications / Mobile firmware & hardware
IPQ5300
Mobile applications / Mobile firmware & hardware
IPQ5302
Mobile applications / Mobile firmware & hardware
IPQ5312
Mobile applications / Mobile firmware & hardware
IPQ5332
Mobile applications / Mobile firmware & hardware
IPQ5424
Mobile applications / Mobile firmware & hardware
IPQ9008
Mobile applications / Mobile firmware & hardware
IPQ9048
Mobile applications / Mobile firmware & hardware
IPQ9554
Mobile applications / Mobile firmware & hardware
IPQ9570
Mobile applications / Mobile firmware & hardware
IPQ9574
Mobile applications / Mobile firmware & hardware
QCA0000
Mobile applications / Mobile firmware & hardware
QCA8075
Mobile applications / Mobile firmware & hardware
QCA8080
Mobile applications / Mobile firmware & hardware
QCA8081
Mobile applications / Mobile firmware & hardware
QCA8082
Mobile applications / Mobile firmware & hardware
QCA8084
Mobile applications / Mobile firmware & hardware
QCA8085
Mobile applications / Mobile firmware & hardware
QCA8101
Mobile applications / Mobile firmware & hardware
QCA8102
Mobile applications / Mobile firmware & hardware
QCA8111
Mobile applications / Mobile firmware & hardware
QCA8112
Mobile applications / Mobile firmware & hardware
QCA8384
Mobile applications / Mobile firmware & hardware
QCA8385
Mobile applications / Mobile firmware & hardware
QCA8386
Mobile applications / Mobile firmware & hardware
QCF8000
Mobile applications / Mobile firmware & hardware
QCF8001
Mobile applications / Mobile firmware & hardware
QCN5124
Mobile applications / Mobile firmware & hardware
QCN5224
Mobile applications / Mobile firmware & hardware
QCN6402
Mobile applications / Mobile firmware & hardware
QCN6412
Mobile applications / Mobile firmware & hardware
QCN6422
Mobile applications / Mobile firmware & hardware
QCN6432
Mobile applications / Mobile firmware & hardware
QCN9000
Mobile applications / Mobile firmware & hardware
QCN9012
Mobile applications / Mobile firmware & hardware
QCN9024
Mobile applications / Mobile firmware & hardware
QCN9074
Mobile applications / Mobile firmware & hardware
QCN9160
Mobile applications / Mobile firmware & hardware
QCN9274
Mobile applications / Mobile firmware & hardware
QMP1000
Mobile applications / Mobile firmware & hardware
QXM8083
Mobile applications / Mobile firmware & hardware
SM6650
Mobile applications / Mobile firmware & hardware
SM6650P
Mobile applications / Mobile firmware & hardware
SM7635
Mobile applications / Mobile firmware & hardware
SM8735
Mobile applications / Mobile firmware & hardware
SM8750
Mobile applications / Mobile firmware & hardware
SM8750P
Mobile applications / Mobile firmware & hardware
Snapdragon 8 Gen 3 Mobile Platform
Mobile applications / Mobile firmware & hardware
WCD9378
Mobile applications / Mobile firmware & hardware
WCD9390
Mobile applications / Mobile firmware & hardware
WCD9395
Mobile applications / Mobile firmware & hardware
WCN6450
Mobile applications / Mobile firmware & hardware
WCN6650
Mobile applications / Mobile firmware & hardware
WCN6755
Mobile applications / Mobile firmware & hardware
WCN7750
Mobile applications / Mobile firmware & hardware
WCN7860
Mobile applications / Mobile firmware & hardware
WCN7861
Mobile applications / Mobile firmware & hardware
WCN7880
Mobile applications / Mobile firmware & hardware
WCN7881
Mobile applications / Mobile firmware & hardware
WSA8830
Mobile applications / Mobile firmware & hardware
WSA8835
Mobile applications / Mobile firmware & hardware
WSA8840
Mobile applications / Mobile firmware & hardware
WSA8845
Mobile applications / Mobile firmware & hardware
WSA8845H
Mobile applications / Mobile firmware & hardware
WSA8832
Hardware solutions / Firmware

Vendor: Qualcomm

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation in WLAN HAL. A remote attacker can perform a denial of service (DoS) attack.

Mitigation
Install security update from vendor's website.

Vulnerable software versions

FastConnect 7800: All versions

Immersive Home 3210 Platform: All versions

Immersive Home 326 Platform: All versions

IPQ5300: All versions

IPQ5302: All versions

IPQ5312: All versions

IPQ5332: All versions

IPQ5424: All versions

IPQ9008: All versions

IPQ9048: All versions

IPQ9554: All versions

IPQ9570: All versions

IPQ9574: All versions

QCA0000: All versions

QCA8075: All versions

QCA8080: All versions

QCA8081: All versions

QCA8082: All versions

QCA8084: All versions

QCA8085: All versions

QCA8101: All versions

QCA8102: All versions

QCA8111: All versions

QCA8112: All versions

QCA8384: All versions

QCA8385: All versions

QCA8386: All versions

QCF8000: All versions

QCF8001: All versions

QCN5124: All versions

QCN5224: All versions

QCN6402: All versions

QCN6412: All versions

QCN6422: All versions

QCN6432: All versions

QCN9000: All versions

QCN9012: All versions

QCN9024: All versions

QCN9074: All versions

QCN9160: All versions

QCN9274: All versions

QMP1000: All versions

QXM8083: All versions

SM6650: All versions

SM6650P: All versions

SM7635: All versions

SM8735: All versions

SM8750: All versions

SM8750P: All versions

Snapdragon 8 Gen 3 Mobile Platform: All versions

WCD9378: All versions

WCD9390: All versions

WCD9395: All versions

WCN6450: All versions

WCN6650: All versions

WCN6755: All versions

WCN7750: All versions

WCN7860: All versions

WCN7861: All versions

WCN7880: All versions

WCN7881: All versions

WSA8830: All versions

WSA8832: All versions

WSA8835: All versions

WSA8840: All versions

WSA8845: All versions

WSA8845H: All versions

External links
https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Google Android

Multiple vulnerabilities in Qualcomm chipsets