Memory Corruption Vulnerability in Chrome Affects Adreno GPU Drivers
CVE-2025-27038
Key Information:
- Vendor
Qualcomm
- Status
- Vendor
- CVE Published:
- 3 June 2025
Badges
What is CVE-2025-27038?
This vulnerability involves a memory corruption issue that occurs when the Chrome browser renders graphics using Adreno GPU drivers. Exploiting this flaw could allow attackers to execute arbitrary code, which may lead to unauthorized access or data breaches. Users are advised to stay updated with the latest browser versions to mitigate-associated risks.
CISA has reported CVE-2025-27038
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2025-27038 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Affected Version(s)
Snapdragon Snapdragon Connectivity AR8031
Snapdragon Snapdragon Connectivity CSRA6620
Snapdragon Snapdragon Connectivity CSRA6640
News Articles
References
EPSS Score
16% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- 👾
Exploit known to exist
- 🦅
CISA Reported
Vulnerability published
- 📰
First article discovered by BleepingComputer
Vulnerability Reserved