CVE-2025-27032

Q: What is the severity of CVE-2025-27032?

CVE-2025-27032 has a CVSS score of 7.8 (HIGH). This vulnerability allows memory corruption when loading a PIL authenticated VM image without proper cache coherency maintenance. Attackers could potentially execute arbitrary code or cause denial of service. Affects systems using Qualcomm components that handle authenticated VM images.

7.8 HIGH

📋 TL;DR

This vulnerability allows memory corruption when loading a PIL authenticated VM image without proper cache coherency maintenance. Attackers could potentially execute arbitrary code or cause denial of service. Affects systems using Qualcomm components that handle authenticated VM images.

💻 Affected Systems

Products:

Qualcomm SoCs with PIL authenticated VM support

Versions: Specific versions not detailed in reference; check Qualcomm September 2025 bulletin

Operating Systems: Android, Linux-based systems using affected Qualcomm components

Default Config Vulnerable: ⚠️ Yes

Notes: Requires PIL authenticated VM loading functionality to be enabled/used.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, data exfiltration, or persistent backdoor installation.

🟠

Likely Case

System crashes, denial of service, or local privilege escalation affecting VM integrity.

🟢

If Mitigated

Limited impact with proper isolation and access controls, potentially only affecting specific VM instances.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires ability to load malicious authenticated VM images; likely requires some level of access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Qualcomm September 2025 security bulletin for specific firmware/software versions

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Review Qualcomm September 2025 security bulletin. 2. Identify affected components in your system. 3. Apply firmware/software updates from device/OEM manufacturer. 4. Reboot system after update.

🔧 Temporary Workarounds

Disable PIL authenticated VM loading

all

Prevent loading of PIL authenticated VM images if not required

Configuration specific - check device/OEM documentation

Restrict VM image sources

all

Only allow loading of VM images from trusted, verified sources

Implement strict access controls and validation for VM image loading

🧯 If You Can't Patch

Implement strict network segmentation to isolate affected systems
Monitor for abnormal VM loading activities and system crashes

🔍 How to Verify

Check if Vulnerable:

Check system firmware/software version against Qualcomm advisory; verify if PIL authenticated VM functionality is enabled

Check Version:

Device/OEM specific - typically 'cat /proc/version' or system settings for firmware version

Verify Fix Applied:

Confirm firmware/software version has been updated to patched version from Qualcomm/OEM

📡 Detection & Monitoring

Log Indicators:

Unexpected VM loading events
System crashes or reboots during VM operations
Memory corruption errors in system logs

Network Indicators:

Unusual network traffic to/from VM management interfaces

SIEM Query:

Search for: 'VM load failure', 'memory corruption', 'PIL authentication' events in system logs

📊 Metadata

CVE ID: CVE-2025-27032

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-1257

EPSS Score: 0.01% exploit probability (1.9th percentile)

Published: September 24, 2025

Last Updated: November 28, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Aqt1000 Firmware by Qualcomm

Ar8035 Firmware by Qualcomm

Fastconnect 6200 Firmware by Qualcomm

Fastconnect 6700 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8295p Firmware by Qualcomm

Qam8620p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca6174a Firmware by Qualcomm

Qca6310 Firmware by Qualcomm

Qca6335 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6420 Firmware by Qualcomm

Qca6421 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6430 Firmware by Qualcomm

Qca6431 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcm5430 Firmware by Qualcomm

Qcm6490 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcn9274 Firmware by Qualcomm

Qcs5430 Firmware by Qualcomm

Qcs6490 Firmware by Qualcomm

Qcs8300 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qcs9100 Firmware by Qualcomm

Qdu1000 Firmware by Qualcomm

Qdu1010 Firmware by Qualcomm

Qdu1110 Firmware by Qualcomm

Qdu1210 Firmware by Qualcomm

Qdx1010 Firmware by Qualcomm

Qdx1011 Firmware by Qualcomm

Qep8111 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm

Qfw7124 Firmware by Qualcomm

Qmp1000 Firmware by Qualcomm

Qru1032 Firmware by Qualcomm

Qru1052 Firmware by Qualcomm

Qru1062 Firmware by Qualcomm

Qsm8350 Firmware by Qualcomm

Robotics Rb3 Platform Firmware by Qualcomm

Sa6145p Firmware by Qualcomm

Sa6155 Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa7255p Firmware by Qualcomm

Sa7775p Firmware by Qualcomm

Sa8150p Firmware by Qualcomm

Sa8155 Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8295p Firmware by Qualcomm

Sa8540p Firmware by Qualcomm