CVE-2025-27059 — HIGH (8.8)

Vulnerability Description

Memory corruption while performing SCM call.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qualcomm	Immersive Home 214 Platform Firmware	-
Qualcomm	Immersive Home 214 Platform	-
Qualcomm	Immersive Home 216 Platform Firmware	-
Qualcomm	Immersive Home 216 Platform	-
Qualcomm	Immersive Home 316 Platform Firmware	-
Qualcomm	Immersive Home 316 Platform	-
Qualcomm	Immersive Home 318 Platform Firmware	-
Qualcomm	Immersive Home 318 Platform	-
Qualcomm	Ipq5010 Firmware	-
Qualcomm	Ipq5010	-
Qualcomm	Ipq5028 Firmware	-
Qualcomm	Ipq5028	-
Qualcomm	Qcn6023 Firmware	-
Qualcomm	Qcn6023	-
Qualcomm	Qcn6024 Firmware	-
Qualcomm	Qcn6024	-
Qualcomm	Qcn6100 Firmware	-
Qualcomm	Qcn6100	-
Qualcomm	Qcn6102 Firmware	-
Qualcomm	Qcn6102	-

Related Weaknesses (CWE)

CWE-823

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-Vendor Advisory

FAQ

What is CVE-2025-27059?

CVE-2025-27059 is a vulnerability with a CVSS score of 8.8 (HIGH). Memory corruption while performing SCM call.

How severe is CVE-2025-27059?

CVE-2025-27059 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-27059?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Immersive Home 214 Platform Firmware, Qualcomm Immersive Home 214 Platform, Qualcomm Immersive Home 216 Platform Firmware, Qualcomm Immersive Home 216 Platform, Qualcomm Immersive Home 316 Platform Firmware.