CVE-2025-27059 Use of Out-of-range Pointer Offset in TZ Firmware

🗓️ 09 Oct 2025 03:18:04Reported by qualcommType

CVE-2025-27059 memory corruption in trusted zone firmware due to out-of-range pointer offset.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-27059	9 Oct 202504:10	–	circl
CNNVD	Qualcomm Chipsets 安全漏洞	9 Oct 202500:00	–	cnnvd
CVE	CVE-2025-27059	9 Oct 202503:18	–	cve
EUVD	EUVD-2025-33252	9 Oct 202503:18	–	euvd
NVD	CVE-2025-27059	9 Oct 202504:16	–	nvd
Positive Technologies	PT-2025-41344	9 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-27059	10 Oct 202505:23	–	redhatcve
Vulnrichment	CVE-2025-27059 Use of Out-of-range Pointer Offset in TZ Firmware	9 Oct 202503:18	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "Snapdragon Wired Infrastructure and Networking"
    ],
    "product": "Snapdragon",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "Immersive Home 214 Platform"
      },
      {
        "status": "affected",
        "version": "Immersive Home 216 Platform"
      },
      {
        "status": "affected",
        "version": "Immersive Home 316 Platform"
      },
      {
        "status": "affected",
        "version": "Immersive Home 318 Platform"
      },
      {
        "status": "affected",
        "version": "IPQ5010"
      },
      {
        "status": "affected",
        "version": "IPQ5028"
      },
      {
        "status": "affected",
        "version": "QCN6023"
      },
      {
        "status": "affected",
        "version": "QCN6024"
      },
      {
        "status": "affected",
        "version": "QCN6100"
      },
      {
        "status": "affected",
        "version": "QCN6102"
      },
      {
        "status": "affected",
        "version": "QCN6112"
      },
      {
        "status": "affected",
        "version": "QCN6122"
      },
      {
        "status": "affected",
        "version": "QCN6132"
      },
      {
        "status": "affected",
        "version": "QCN9000"
      },
      {
        "status": "affected",
        "version": "QCN9001"
      },
      {
        "status": "affected",
        "version": "QCN9002"
      },
      {
        "status": "affected",
        "version": "QCN9003"
      },
      {
        "status": "affected",
        "version": "QCN9012"
      },
      {
        "status": "affected",
        "version": "QCN9022"
      },
      {
        "status": "affected",
        "version": "QCN9024"
      },
      {
        "status": "affected",
        "version": "QCN9070"
      },
      {
        "status": "affected",
        "version": "QCN9072"
      },
      {
        "status": "affected",
        "version": "QCN9074"
      },
      {
        "status": "affected",
        "version": "QCN9100"
      },
      {
        "status": "affected",
        "version": "QCN9274"
      }
    ]
  }
]

Source	Link
docs	www.docs.qualcomm.com/product/publicresources/securitybulletin/october-2025-bulletin.html

09 Oct 2025 03:18Current

CVSS 3.18.8

EPSS0.00018

CWE-823