Denial of Service Vulnerability in Qualcomm Network Products
CVE-2025-27065

7.5HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 August 2025

What is CVE-2025-27065?

This vulnerability allows for a transient denial of service condition when the system processes a specifically crafted frame containing a malformed shared-key descriptor. Exploitation of this flaw can lead to unexpected interruptions in service, affecting the availability of Qualcomm network products.

Affected Version(s)

Snapdragon Snapdragon Auto AR8035

Snapdragon Snapdragon Auto FastConnect 6800

Snapdragon Snapdragon Auto FastConnect 6900

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2025
Vulnerability Reserved
Feb 18, 2025