CVE-2025-27065

Q: What is the severity of CVE-2025-27065?

CVE-2025-27065 has a CVSS score of 7.5 (HIGH). This vulnerability allows an attacker to cause a Denial of Service (DoS) by sending a specially crafted frame with a malformed shared-key descriptor to affected Qualcomm wireless components. The attack disrupts normal processing, potentially causing system instability or crashes. This affects devices using vulnerable Qualcomm wireless chipsets.

7.5 HIGH

Denial of Service

📋 TL;DR

This vulnerability allows an attacker to cause a Denial of Service (DoS) by sending a specially crafted frame with a malformed shared-key descriptor to affected Qualcomm wireless components. The attack disrupts normal processing, potentially causing system instability or crashes. This affects devices using vulnerable Qualcomm wireless chipsets.

💻 Affected Systems

Products:

Qualcomm wireless chipsets and associated firmware

Versions: Specific versions not detailed in reference; affected versions mentioned in August 2025 Qualcomm security bulletin.

Operating Systems: Android, Linux-based systems using Qualcomm wireless components

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with vulnerable Qualcomm wireless firmware; exact product list requires checking Qualcomm's advisory.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system crash requiring reboot, disrupting all wireless connectivity and potentially affecting device stability.

🟠

Likely Case

Temporary service disruption affecting wireless connectivity until system recovers or reboots.

🟢

If Mitigated

Minimal impact with proper network segmentation and monitoring; system may experience brief performance degradation.

🌐 Internet-Facing: MEDIUM - Attack requires sending malformed frames to wireless interfaces, which could be done remotely if wireless access is exposed.

🏢 Internal Only: MEDIUM - Internal attackers with network access could target wireless infrastructure, but requires proximity or network access to wireless interfaces.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Exploitation requires crafting and sending specific malformed frames to wireless interfaces; no authentication needed but requires network access to target.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Patched versions detailed in August 2025 Qualcomm security bulletin

Vendor Advisory: https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html

Restart Required: Yes

Instructions:

1. Check Qualcomm advisory for specific affected products. 2. Obtain updated firmware from device manufacturer. 3. Apply firmware update following manufacturer instructions. 4. Reboot device to activate patched firmware.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate wireless networks from critical infrastructure to limit attack surface.

Wireless Access Control

all

Implement strict wireless authentication and MAC filtering to limit who can send frames.

🧯 If You Can't Patch

Monitor wireless interfaces for unusual frame patterns or DoS attempts.
Implement network-based intrusion detection to alert on malformed frame attacks.

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Qualcomm's advisory; use manufacturer-specific commands to query wireless chipset firmware.

Check Version:

Manufacturer-specific; typically 'adb shell getprop ro.build.fingerprint' for Android or system-specific firmware query commands.

Verify Fix Applied:

Verify firmware version matches patched version from Qualcomm advisory after update.

📡 Detection & Monitoring

Log Indicators:

Wireless driver crashes
Kernel panic logs related to wireless modules
Increased error rates on wireless interfaces

Network Indicators:

Unusual spike in malformed wireless frames
Specific frame patterns matching shared-key descriptor anomalies

SIEM Query:

Wireless logs showing driver crashes OR kernel panics with wireless module references

📊 Metadata

CVE ID: CVE-2025-27065

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE: CWE-126

EPSS Score: 0.06% exploit probability (19.1th percentile)

Published: August 6, 2025

Last Updated: August 20, 2025

🔗 References

https://docs.qualcomm.com/product/publicresources/securitybulletin/august-2025-bulletin.html Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Ar8035 Firmware by Qualcomm

Fastconnect 6800 Firmware by Qualcomm

Fastconnect 6900 Firmware by Qualcomm

Fastconnect 7800 Firmware by Qualcomm

Immersive Home 3210 Platform Firmware by Qualcomm

Immersive Home 326 Platform Firmware by Qualcomm

Ipq5300 Firmware by Qualcomm

Ipq5302 Firmware by Qualcomm

Ipq5312 Firmware by Qualcomm

Ipq5332 Firmware by Qualcomm

Ipq5424 Firmware by Qualcomm

Ipq9008 Firmware by Qualcomm

Ipq9048 Firmware by Qualcomm

Ipq9554 Firmware by Qualcomm

Ipq9570 Firmware by Qualcomm

Ipq9574 Firmware by Qualcomm

Qam8255p Firmware by Qualcomm

Qam8650p Firmware by Qualcomm

Qam8775p Firmware by Qualcomm

Qamsrv1h Firmware by Qualcomm

Qamsrv1m Firmware by Qualcomm

Qca0000 Firmware by Qualcomm

Qca6391 Firmware by Qualcomm

Qca6426 Firmware by Qualcomm

Qca6436 Firmware by Qualcomm

Qca6554a Firmware by Qualcomm

Qca6564au Firmware by Qualcomm

Qca6574 Firmware by Qualcomm

Qca6574a Firmware by Qualcomm

Qca6574au Firmware by Qualcomm

Qca6584au Firmware by Qualcomm

Qca6595 Firmware by Qualcomm

Qca6595au Firmware by Qualcomm

Qca6678aq Firmware by Qualcomm

Qca6688aq Firmware by Qualcomm

Qca6696 Firmware by Qualcomm

Qca6698aq Firmware by Qualcomm

Qca6777aq Firmware by Qualcomm

Qca6787aq Firmware by Qualcomm

Qca6797aq Firmware by Qualcomm

Qca8075 Firmware by Qualcomm

Qca8080 Firmware by Qualcomm

Qca8081 Firmware by Qualcomm

Qca8082 Firmware by Qualcomm

Qca8084 Firmware by Qualcomm

Qca8085 Firmware by Qualcomm

Qca8101 Firmware by Qualcomm

Qca8102 Firmware by Qualcomm

Qca8111 Firmware by Qualcomm

Qca8112 Firmware by Qualcomm

Qca8337 Firmware by Qualcomm

Qca8384 Firmware by Qualcomm

Qca8385 Firmware by Qualcomm

Qca8386 Firmware by Qualcomm

Qcc2073 Firmware by Qualcomm

Qcc2076 Firmware by Qualcomm

Qcc710 Firmware by Qualcomm

Qcf8000 Firmware by Qualcomm

Qcf8001 Firmware by Qualcomm

Qcm8550 Firmware by Qualcomm

Qcn5124 Firmware by Qualcomm

Qcn5224 Firmware by Qualcomm

Qcn6224 Firmware by Qualcomm

Qcn6274 Firmware by Qualcomm

Qcn6402 Firmware by Qualcomm

Qcn6412 Firmware by Qualcomm

Qcn6422 Firmware by Qualcomm

Qcn6432 Firmware by Qualcomm

Qcn9000 Firmware by Qualcomm

Qcn9011 Firmware by Qualcomm

Qcn9012 Firmware by Qualcomm

Qcn9024 Firmware by Qualcomm

Qcn9074 Firmware by Qualcomm

Qcn9160 Firmware by Qualcomm

Qcn9274 Firmware by Qualcomm

Qcs8550 Firmware by Qualcomm

Qfw7114 Firmware by Qualcomm