Skip to main content

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
Low

Lifecycle Timeline

2
Analysis Generated
Mar 28, 2026 - 19:14 vuln.today
CVE Published
Sep 24, 2025 - 16:15 nvd
MEDIUM 6.1

DescriptionCVE.org

Information disclosure while running video usecase having rogue firmware.

AnalysisAI

Information disclosure while running video usecase having rogue firmware. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-126. Information disclosure while running video usecase having rogue firmware. Affected products include: Qualcomm Qcm5430 Firmware, Qualcomm Qcm6490 Firmware, Qualcomm Qcs5430 Firmware, Qualcomm Qcs6490 Firmware, Qualcomm Qcm8550 Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2026-21385 HIGH POC
7.8 Mar 02

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memo

CVE-2024-21480 CRITICAL
9.8 May 06

Memory corruption while playing audio file having large-sized input buffer. Rated critical severity (CVSS 9.8), this vul

CVE-2025-21450 CRITICAL
9.1 Jul 08

Cryptographic issue occurs due to use of insecure connection method while downloading.

CVE-2024-38408 CRITICAL
9.1 Nov 04

Cryptographic issue when a controller receives an LMP start encryption command under unexpected conditions. Rated critic

CVE-2023-33054 CRITICAL
9.1 Dec 05

Cryptographic issue in GPS HLOS Driver while downloading Qualcomm GNSS assistance data. Rated critical severity (CVSS 9.

CVE-2023-28585 HIGH
8.8 Dec 05

Memory corruption while loading an ELF segment in TEE Kernel. Rated high severity (CVSS 8.8), this vulnerability is low

CVE-2024-33065 HIGH
8.4 Oct 07

Memory corruption while taking snapshot when an offset variable is set by camera driver. Rated high severity (CVSS 8.4),

CVE-2025-47345 HIGH
8.4 Jan 07

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

CVE-2024-23384 HIGH
8.4 Aug 05

Memory corruption when the mapped pages in VBO are still mapped after reclaiming by shrinker. Rated high severity (CVSS

CVE-2024-21481 HIGH
8.4 Aug 05

Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager. Rated high severity (

CVE-2024-53026 HIGH
8.2 Jun 03

CVE-2024-53026 is an information disclosure vulnerability in IMS (IP Multimedia Subsystem) implementations affecting VoL

CVE-2024-53021 HIGH
8.2 Jun 03

CVE-2024-53021 is an information disclosure vulnerability in RTCP (Real-time Transport Control Protocol) packet processi

Share

CVE-2025-27033 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy