SARA / Free Tools / CVE / CVE-2025-27038

CVE-2025-27038 — Qualcomm Multiple Chipsets Use-After-Free Vulnerability

Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.

CVSS

7.5 HIGH

EPSS

1.07% (top 22.50%)

CWE

CWE-416

Published

2025-06-03T05:53:06.692Z

Last modified

2026-02-26T18:27:39.591Z

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA KEV — Actively Exploited

Added to KEV

2025-06-03

BOD 22-01 due

2025-06-24

Ransomware use

Unknown

View KEV detail

01What is this vulnerability?

Memory corruption while rendering graphics using Adreno GPU drivers in Chrome.

Vendor	Product	Versions
Qualcomm, Inc.	Snapdragon	AR8031, CSRA6620, CSRA6640, FastConnect 7800, QCA2066, QCA6391, QCM6125, QCM8550, QCN9011, QCN9012, QCS6125, QCS8550, Qualcommr Video Collaboration VC1 Platform, SM6475, SM6650, SM6650P, SM7435, SM7635, SM7635P, Smart Audio 400 Platform, Snapdragon 4 Gen 2 Mobile Platform, Snapdragon 6 Gen 1 Mobile Platform, Snapdragon 680 4G Mobile Platform, Snapdragon 685 4G Mobile Platform (SM6225-AD), Snapdragon W5+ Gen 1 Wearable Platform, SW5100, SW5100P, WCD9335, WCD9370, WCD9375, WCD9378, WCD9385, WCD9395, WCN3950, WCN3980, WCN3988, WCN6650, WCN6740, WCN6755, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835

Yes — actively exploited. Added to the CISA KEV catalog on 2025-06-03. Ransomware use: Unknown.

Patch to a fixed version listed in the vendor advisory (see references below).
Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
Hunt historical logs for exploitation indicators — see Detection signatures below.

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

docs.qualcomm.com — https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bul…

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.