CVE-2025-27064

Q: What is the severity of CVE-2025-27064?

CVE-2025-27064 has a CVSS score of 6.1 (MEDIUM). This vulnerability allows information disclosure through the diagHal interface when registering commands from clients. It affects Qualcomm devices using the vulnerable diag component, potentially exposing sensitive system information to unauthorized actors.

6.1 MEDIUM

📋 TL;DR

This vulnerability allows information disclosure through the diagHal interface when registering commands from clients. It affects Qualcomm devices using the vulnerable diag component, potentially exposing sensitive system information to unauthorized actors.

💻 Affected Systems

Products:

Qualcomm chipsets with diagHal component

Versions: Specific versions not detailed in reference; affected versions would be those prior to the November 2025 security patch

Operating Systems: Android and other OS using Qualcomm chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices using Qualcomm chipsets with the vulnerable diagHal implementation. Exact device models depend on chipset integration.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could gain access to sensitive system information, debug data, or proprietary Qualcomm diagnostic information that could be used for further attacks or reverse engineering.

🟠

Likely Case

Information leakage of diagnostic data, potentially including device state, configuration details, or debugging information that shouldn't be accessible to unprivileged users.

🟢

If Mitigated

Limited exposure of non-critical diagnostic information with proper access controls and monitoring in place.

🌐 Internet-Facing: LOW - This typically requires local access or specialized diagnostic interfaces that aren't internet-exposed by default.

🏢 Internal Only: MEDIUM - Could be exploited by malicious insiders or compromised internal systems with access to diagnostic interfaces.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation likely requires access to diagnostic interfaces and understanding of diag command structure. No public exploit details available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: November 2025 security patch or later

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check with device manufacturer for November 2025 security patch availability. 2. Apply the security patch through standard OTA update process. 3. Reboot device after patch installation.

🔧 Temporary Workarounds

Disable diagnostic interfaces

all

Restrict access to diag interfaces if not required for normal operation

Access control hardening

all

Implement strict access controls on diagnostic services and interfaces

🧯 If You Can't Patch

Implement network segmentation to isolate devices with diagnostic interfaces
Monitor and log all access to diagnostic services and interfaces

🔍 How to Verify

Check if Vulnerable:

Check device security patch level - if before November 2025, likely vulnerable. Check with manufacturer for specific device vulnerability status.

Check Version:

On Android: Settings > About phone > Android version > Security patch level

Verify Fix Applied:

Verify security patch level is November 2025 or later. Check with manufacturer confirmation that this CVE is addressed in the applied patch.

📡 Detection & Monitoring

Log Indicators:

Unauthorized access attempts to diag services
Unexpected diag command registrations
Diagnostic interface access from unauthorized users

Network Indicators:

Unexpected traffic to diagnostic ports
Diag protocol usage from unexpected sources

SIEM Query:

Search for events related to diag service access, diagnostic interface usage, or Qualcomm diagnostic protocol activity

📊 Metadata

CVE ID: CVE-2025-27064

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

CWE: CWE-126

EPSS Score: 0.02% exploit probability (2.5th percentile)

Published: November 4, 2025

Last Updated: November 5, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/november-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq5300 Firmware by Qualcomm

Ipq5302 Firmware by Qualcomm

Ipq5312 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq5424 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9048 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9570 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Mdm9628 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qca0000 Firmware by Qualcomm

Qca6564a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8080 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8101 Firmware by Qualcomm

Qca8102 Firmware by Qualcomm

Qca8111 Firmware by Qualcomm

Qca8112 Firmware by Qualcomm

Qca8384 Firmware by Qualcomm

Qca8385 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qca9367 Firmware by Qualcomm

Qca9377 Firmware by Qualcomm

Qcf8000 Firmware by Qualcomm

Qcf8001 Firmware by Qualcomm

Qcn5124 Firmware by Qualcomm

Qcn5224 Firmware by Qualcomm

Qcn6402 Firmware by Qualcomm

Qcn6412 Firmware by Qualcomm

Qcn6422 Firmware by Qualcomm

Qcn6432 Firmware by Qualcomm

Qcn9000 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcn9074 Firmware by Qualcomm

Qcn9160 Firmware by Qualcomm

Qcn9274 Firmware by Qualcomm

Qxm8083 Firmware by Qualcomm

Sa4150p Firmware by Qualcomm

Sa4155p Firmware by Qualcomm

Sa6155p Firmware by Qualcomm

Sa7255p Firmware by Qualcomm

Sa8155p Firmware by Qualcomm

Sa8195p Firmware by Qualcomm

Sa8255p Firmware by Qualcomm

Sa8530p Firmware by Qualcomm

Sa8540p Firmware by Qualcomm

Sa8650p Firmware by Qualcomm

Sa9000p Firmware by Qualcomm

Snapdragon 8 Gen 1 Mobile Platform Firmware by Qualcomm

Snapdragon Auto 5g Modem Rf Gen 2 Firmware by Qualcomm

Sxr2250p Firmware by Qualcomm

Wcd9380 Firmware by Qualcomm

Wcn3660b Firmware by Qualcomm

Wcn3680b Firmware by Qualcomm

Wcn3980 Firmware by Qualcomm

Wsa8830 Firmware by Qualcomm

Wsa8835 Firmware by Qualcomm