CVE-2025-27062 — HIGH (7.8)

Vulnerability Description

Memory corruption while handling client exceptions, allowing unauthorized channel access.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qualcomm	315 5G Iot Modem Firmware	-
Qualcomm	315 5G Iot Modem	-
Qualcomm	Apq8064Au Firmware	-
Qualcomm	Apq8064Au	-
Qualcomm	Ar8035 Firmware	-
Qualcomm	Ar8035	-
Qualcomm	C-V2X 9150 Firmware	-
Qualcomm	C-V2X 9150	-
Qualcomm	Csra6620 Firmware	-
Qualcomm	Csra6620	-
Qualcomm	Sm7635 Firmware	-
Qualcomm	Sm7635	-
Qualcomm	Sm7635P Firmware	-
Qualcomm	Sm7635P	-
Qualcomm	Sm7675 Firmware	-
Qualcomm	Sm7675	-
Qualcomm	Sm7675P Firmware	-
Qualcomm	Sm7675P	-
Qualcomm	Sm8550P Firmware	-
Qualcomm	Sm8550P	-

Related Weaknesses (CWE)

CWE-284

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bVendor Advisory

FAQ

What is CVE-2025-27062?

CVE-2025-27062 is a vulnerability with a CVSS score of 7.8 (HIGH). Memory corruption while handling client exceptions, allowing unauthorized channel access.

How severe is CVE-2025-27062?

CVE-2025-27062 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-27062?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm 315 5G Iot Modem Firmware, Qualcomm 315 5G Iot Modem, Qualcomm Apq8064Au Firmware, Qualcomm Apq8064Au, Qualcomm Ar8035 Firmware.