SB2025090133 - Multiple vulnerabilities in Qualcomm chipsets (September 2025)
Published: September 1, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 23 secuirty vulnerabilities.
1) Use After Free (CVE-ID: CVE-2025-27077)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Automotive Software platform based on QNX. A local application can execute arbitrary code.
2) Release of invalid pointer or reference (CVE-ID: CVE-2025-47329)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Android Core. A local application can execute arbitrary code.
3) Buffer over-read (CVE-ID: CVE-2025-47328)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in WLAN HAL. A remote attacker can perform a denial of service (DoS) attack.
4) Use After Free (CVE-ID: CVE-2025-47327)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Camera. A local application can execute arbitrary code.
5) Buffer over-read (CVE-ID: CVE-2025-47326)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in WLAN HAL. A remote attacker can perform a denial of service (DoS) attack.
6) Buffer over-read (CVE-ID: CVE-2025-47318)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation in BT Controller. A remote attacker can perform a denial of service (DoS) attack.
7) Buffer over-read (CVE-ID: CVE-2025-47317)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in BT Controller. A local application can execute arbitrary code.
8) Double Free (CVE-ID: CVE-2025-47316)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Video. A local application can execute arbitrary code.
9) Use After Free (CVE-ID: CVE-2025-47315)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Automotive Software platform based on QNX. A local application can execute arbitrary code.
10) Improper input validation (CVE-ID: CVE-2025-47314)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Automotive Software platform based on QNX. A local application can execute arbitrary code.
11) Improper Access Control Applied to Mirrored or Aliased Memory Regions (CVE-ID: CVE-2025-27032)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Hypervisor. A local application can execute arbitrary code.
12) Buffer overflow (CVE-ID: CVE-2025-21481)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in HLOS. A local application can execute arbitrary code.
13) Buffer over-read (CVE-ID: CVE-2025-21488)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.
14) Buffer over-read (CVE-ID: CVE-2025-21487)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.
15) Buffer over-read (CVE-ID: CVE-2025-21484)
The vulnerability allows a remote attacker to read and manipulate data.
The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can read and manipulate data.
16) Cryptographic Issues (CVE-ID: CVE-2025-21482)
The vulnerability allows a local application to read and manipulate data.
The vulnerability exists due to improper input validation in Core. A local application can read and manipulate data.
17) Improper Validation of Array Index (CVE-ID: CVE-2025-27034)
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to improper input validation in Multi-Mode Call Processor. A remote attacker can execute arbitrary code.
18) Memory corruption (CVE-ID: CVE-2025-21483)
The vulnerability allows a remote attacker to execute arbitrary code.
The vulnerability exists due to improper input validation in Data Network Stack & Connectivity. A remote attacker can execute arbitrary code.
19) Buffer over-read (CVE-ID: CVE-2025-27030)
The vulnerability allows a local application to read and manipulate data.
The vulnerability exists due to improper input validation in Audio. A local application can read and manipulate data.
20) Buffer over-read (CVE-ID: CVE-2025-27033)
The vulnerability allows a local application to read and manipulate data.
The vulnerability exists due to improper input validation in Video. A local application can read and manipulate data.
21) Buffer overflow (CVE-ID: CVE-2025-21476)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Computer Vision. A local application can execute arbitrary code.
22) Use After Free (CVE-ID: CVE-2025-27037)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to improper input validation in Camera Driver. A local application can execute arbitrary code.
23) Buffer over-read (CVE-ID: CVE-2025-27036)
The vulnerability allows a local application to read and manipulate data.
The vulnerability exists due to improper input validation in Video. A local application can read and manipulate data.
Remediation
Install update from vendor's website.