How to fix CVE-2025-27074?

Within 30 days: Identify all affected systems and apply vendor patches as part of regular patch cycle. Monitor vendor channels for patch availability.

Is Apq8064au Firmware affected by CVE-2025-27074?

CVE-2025-27074 presents significant security risk rated CVSS 8.8. Successful exploitation could significantly impact the confidentiality, integrity, or availability of affected systems. Organizations should apply vendor updates when available and consider compensating controls in the interim.

CVE-2025-27074

HIGH

2025-11-04 [email protected]

8.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 28, 2026 - 19:20 vuln.today

CVE Published

Nov 04, 2025 - 04:15 nvd

HIGH 8.8

Tags

Buffer Overflow Apq8064au Firmware Csr8811 Firmware Immersive Home 214 Platform Firmware Immersive Home 216 Platform Firmware Immersive Home 316 Platform Firmware Immersive Home 318 Platform Firmware Ipq5010 Firmware Ipq5028 Firmware Ipq8070 Firmware Ipq8070a Firmware Ipq8071 Firmware Ipq8071a Firmware Ipq8072 Firmware Ipq8072a Firmware Ipq8074 Firmware Ipq8074a Firmware Ipq8076 Firmware Ipq8076a Firmware Ipq8078 Firmware Ipq8078a Firmware Ipq8173 Firmware Ipq8174 Firmware Ipq9008 Firmware Ipq9574 Firmware Mdm9640 Firmware Mdm9650 Firmware Msm8996au Firmware Pmp8074 Firmware Qca4024 Firmware Qca6174a Firmware Qca6234 Firmware Qca6310 Firmware Qca6320 Firmware Qca6428 Firmware Qca6438 Firmware Qca6564a Firmware Qca6564au Firmware Qca6574 Firmware Qca6574a Firmware Qca6574au Firmware Qca6584au Firmware Qca6694 Firmware Qca8072 Firmware Qca8075 Firmware Qca8081 Firmware Qca9888 Firmware Qca9889 Firmware Qca9984 Firmware Qcn5022 Firmware Qcn5024 Firmware Qcn5052 Firmware Qcn5054 Firmware Qcn5064 Firmware Qcn5122 Firmware Qcn5124 Firmware Qcn5152 Firmware Qcn5154 Firmware Qcn5164 Firmware Qcn5550 Firmware Qcn6023 Firmware Qcn6024 Firmware Qcn6100 Firmware Qcn6102 Firmware Qcn6112 Firmware Qcn6122 Firmware Qcn6132 Firmware Qcn9000 Firmware Qcn9001 Firmware Qcn9002 Firmware Qcn9003 Firmware Qcn9012 Firmware Qcn9022 Firmware Qcn9024 Firmware Qcn9070 Firmware Qcn9072 Firmware Qcn9074 Firmware Qcn9100 Firmware Qcn9274 Firmware Sd820 Firmware Sd821 Firmware Sdm429w Firmware Sdx55 Firmware Snapdragon 429 Mobile Platform Firmware Snapdragon 820 Automotive Platform Firmware Snapdragon 820 Mobile Platform Firmware Snapdragon 821 Mobile Platform Firmware Snapdragon Wear 4100 Platform Firmware Wcd9335 Firmware Wcn3610 Firmware Wcn3620 Firmware Wcn3660b Firmware Wcn3680b Firmware Wcn3980 Firmware Wsa8810 Firmware Wsa8815 Firmware

Description

Memory corruption while processing a GP command response.

Analysis

Memory corruption while processing a GP command response. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. No vendor patch available.

Technical Context

This vulnerability is classified under CWE-131. Affected products include: Qualcomm Apq8064Au Firmware, Qualcomm Csr8811 Firmware, Qualcomm Immersive Home 214 Platform Firmware, Qualcomm Immersive Home 216 Platform Firmware, Qualcomm Immersive Home 316 Platform Firmware.

Affected Products

Qualcomm Apq8064Au Firmware, Qualcomm Csr8811 Firmware, Qualcomm Immersive Home 214 Platform Firmware, Qualcomm Immersive Home 216 Platform Firmware, Qualcomm Immersive Home 316 Platform Firmware.

Remediation

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +44

POC: 0

CVE-2025-27074 vulnerability details – vuln.today

Back

CVE-2025-27074

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Share

External POC / Exploit Code