Skip to main content

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
EUVD ID Assigned
Mar 14, 2026 - 17:04 euvd
EUVD-2025-16701
Analysis Generated
Mar 14, 2026 - 17:04 vuln.today
CVE Published
Jun 03, 2025 - 06:15 nvd
HIGH 7.8

DescriptionCVE.org

memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed.

AnalysisAI

Use-after-free memory corruption vulnerability in IOCTL command processing that occurs when buffers in write loopback mode are accessed after being freed. This local privilege escalation affects authenticated users (PR:L) on affected systems and can enable attackers to achieve confidentiality, integrity, and availability compromise (C:H/I:H/A:H). The vulnerability requires local access and low complexity exploitation, making it a significant risk for multi-user systems or systems where local code execution is possible.

Technical ContextAI

This vulnerability is classified as CWE-416 (Use After Free), a memory safety issue where freed memory is dereferenced during IOCTL (Input/Output Control) command handling. The specific context involves write loopback mode operations, suggesting a device driver or kernel subsystem that manages buffered I/O operations. The use-after-free occurs in a code path where buffer lifecycle management is flawed—likely a buffer is freed prematurely or reference counting is incorrect, while subsequent IOCTL operations still attempt to access it. This pattern is common in device drivers for storage, network, or specialized hardware interfaces where loopback testing modes are implemented. The attack surface is limited to local authenticated users with appropriate privileges to issue IOCTL commands, but the memory corruption can lead to arbitrary code execution in kernel space depending on heap layout and exploitation technique.

RemediationAI

Primary remediation is to apply the security patch released by the affected vendor. Without specific vendor references provided, follow these general steps: (1) Check vendor security advisories for CVE-2025-27031 patches and patch version numbers; (2) For Linux distributions, check package repositories for kernel or driver updates and apply via package manager (apt, yum, dnf, etc.); (3) For Windows, check Windows Update or vendor-specific driver update tools; (4) Test patches in non-production environments before broad deployment. Interim mitigations pending patch availability: (1) Restrict local user access to IOCTL-issuing mechanisms where possible; (2) Disable loopback mode functionality if not required; (3) Apply principle of least privilege to limit who can access affected driver interfaces; (4) Monitor for suspicious IOCTL activity in security logs. Workarounds are limited for use-after-free in kernel code; patching is the reliable solution.

CVE-2025-21480 HIGH
8.6 Jun 03

Qualcomm GPU micronode contains a memory corruption vulnerability (CVE-2025-21480, CVSS 8.6) caused by unauthorized comm

CVE-2025-21479 HIGH
8.6 Jun 03

A second Qualcomm GPU micronode memory corruption vulnerability (CVE-2025-21479, CVSS 8.6) exists in the unauthorized co

CVE-2026-21385 HIGH POC
7.8 Mar 02

A Qualcomm chipset vulnerability (CVE-2026-21385) causes memory corruption through improper integer handling during memo

CVE-2025-21450 CRITICAL
9.1 Jul 08

Cryptographic issue occurs due to use of insecure connection method while downloading.

CVE-2024-33065 HIGH
8.4 Oct 07

Memory corruption while taking snapshot when an offset variable is set by camera driver. Rated high severity (CVSS 8.4),

CVE-2025-47345 HIGH
8.4 Jan 07

Cryptographic issue may occur while encrypting license data. [CVSS 8.4 HIGH]

CVE-2024-45552 HIGH
8.2 Apr 07

Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t

CVE-2024-53026 HIGH
8.2 Jun 03

CVE-2024-53026 is an information disclosure vulnerability in IMS (IP Multimedia Subsystem) implementations affecting VoL

CVE-2024-53021 HIGH
8.2 Jun 03

CVE-2024-53021 is an information disclosure vulnerability in RTCP (Real-time Transport Control Protocol) packet processi

CVE-2024-53020 HIGH
8.2 Jun 03

CVE-2024-53020 is an information disclosure vulnerability in RTP (Real-time Transport Protocol) packet processing that o

CVE-2024-53019 HIGH
8.2 Jun 03

Network-based information disclosure vulnerability in RTP (Real-time Transport Protocol) packet decoding that occurs whe

CVE-2025-21427 HIGH
8.2 Jul 08

Information disclosure while decoding this RTP packet Payload when UE receives the RTP packet from the network.

Share

EUVD-2025-16701 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy