CVE-2025-27042 | Incorrect Calculation of Buffer Size in Video

Memory corruption while processing video packets received from video firmware.

公開: 2025-07-08 最終更新: 2026-06-17 Assigner: [email protected] ソース: [email protected]

総合評価: CVE-2025-27042 は低リスク(38.5/100)。CVSS 深刻度は高。悪用される可能性が高い(EPSS 0.07%、21 パーセンタイル) 推奨対応: 悪用情報と EPSS の推移を監視し、必要に応じて優先度を見直してください。

リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。

CVE-2025-27042 の EPSS(Exploit Prediction Scoring System)スコア

EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。

# 日付 旧 EPSS スコア 新 EPSS スコア Δ(新 − 旧)
1 2026-05-04 0.01% 0.07% +0.05%
2 2025-07-09 0.01%

EPSS の全履歴 (全 2 件)

CVE-2025-27042 の CVSS(Common Vulnerability Scoring System)指標

この CVE の CVSS 指標。

ベーススコア バージョン 深刻度 ベクトル 悪用しやすさ 影響 スコアの出典
7.8 3.1 HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H クリックして展開
攻撃ベクター (AV:L)
対象ホスト上でコードを実行できること、または別ユーザーの誤操作・悪意ある操作が前提になる。
攻撃の複雑さ (AC:L)
攻撃者が条件を満たせば、レース条件や珍しい構成に依存せずに再現しやすい。
必要な権限 (PR:L)
一般ユーザー権限があれば足り、管理者(root 相当)は不要。
ユーザーの関与 (UI:N)
メールのリンクを開く、マクロを有効にするなど、被害者の協力がなくても成立しうる。
スコープ (S:U)
影響は脆弱コンポーネントと同一のセキュリティ権限・信頼境界の内側に収まる。
機密性への影響 (C:H)
広範な機微データの読み取りや持ち出しが現実的。
完全性への影響 (I:H)
権限の奪取や広範なログ改竄など、システムの信頼根拠を揺るがす改ざんが現実的。
可用性への影響 (A:H)
長時間のサービス停止、データ損壊による復旧不能に近い状態など、利用者に著しい不便を与えうる。
1.8 5.9 [email protected]

CVE-2025-27042 の弱点分類(列挙)

CVE-2025-27042 の影響を受けるソフトウェア/構成

ベンダー 製品 バージョン 生の CPE
qualcomm 315_5g_iot_modem_firmware cpe:2.3:o:qualcomm:315_5g_iot_modem_firmware:-:*:*:*:*:*:*:*
qualcomm aqt1000_firmware cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*
qualcomm ar8031_firmware cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:*
qualcomm ar8035_firmware cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*
qualcomm c-v2x_9150_firmware cpe:2.3:o:qualcomm:c-v2x_9150_firmware:-:*:*:*:*:*:*:*
qualcomm csr8811_firmware cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*
qualcomm csra6620_firmware cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:*
qualcomm csra6640_firmware cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:*
qualcomm fastconnect_6200_firmware cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:*
qualcomm fastconnect_6700_firmware cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
qualcomm fastconnect_6800_firmware cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:*:*:*:*:*:*:*
qualcomm fastconnect_6900_firmware cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
qualcomm fastconnect_7800_firmware cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
qualcomm flight_rb5_5g_firmware cpe:2.3:o:qualcomm:flight_rb5_5g_firmware:-:*:*:*:*:*:*:*
qualcomm fsm10055_firmware cpe:2.3:o:qualcomm:fsm10055_firmware:-:*:*:*:*:*:*:*
qualcomm fsm10056_firmware cpe:2.3:o:qualcomm:fsm10056_firmware:-:*:*:*:*:*:*:*
qualcomm fsm20055_firmware cpe:2.3:o:qualcomm:fsm20055_firmware:-:*:*:*:*:*:*:*
qualcomm fsm20056_firmware cpe:2.3:o:qualcomm:fsm20056_firmware:-:*:*:*:*:*:*:*
qualcomm immersive_home_214_firmware cpe:2.3:o:qualcomm:immersive_home_214_firmware:-:*:*:*:*:*:*:*
qualcomm immersive_home_216_firmware cpe:2.3:o:qualcomm:immersive_home_216_firmware:-:*:*:*:*:*:*:*
qualcomm immersive_home_316_firmware cpe:2.3:o:qualcomm:immersive_home_316_firmware:-:*:*:*:*:*:*:*
qualcomm immersive_home_318_firmware cpe:2.3:o:qualcomm:immersive_home_318_firmware:-:*:*:*:*:*:*:*
qualcomm immersive_home_3210_firmware cpe:2.3:o:qualcomm:immersive_home_3210_firmware:-:*:*:*:*:*:*:*
qualcomm immersive_home_326_firmware cpe:2.3:o:qualcomm:immersive_home_326_firmware:-:*:*:*:*:*:*:*
qualcomm ipq5010_firmware cpe:2.3:o:qualcomm:ipq5010_firmware:-:*:*:*:*:*:*:*
qualcomm ipq5302_firmware cpe:2.3:o:qualcomm:ipq5302_firmware:-:*:*:*:*:*:*:*
qualcomm ipq5312_firmware cpe:2.3:o:qualcomm:ipq5312_firmware:-:*:*:*:*:*:*:*
qualcomm ipq5332_firmware cpe:2.3:o:qualcomm:ipq5332_firmware:-:*:*:*:*:*:*:*
qualcomm ipq5424_firmware cpe:2.3:o:qualcomm:ipq5424_firmware:-:*:*:*:*:*:*:*
qualcomm ipq6018_firmware cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8070a_firmware cpe:2.3:o:qualcomm:ipq8070a_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8071a_firmware cpe:2.3:o:qualcomm:ipq8071a_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8072a_firmware cpe:2.3:o:qualcomm:ipq8072a_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8074a_firmware cpe:2.3:o:qualcomm:ipq8074a_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8076_firmware cpe:2.3:o:qualcomm:ipq8076_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8076a_firmware cpe:2.3:o:qualcomm:ipq8076a_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8078_firmware cpe:2.3:o:qualcomm:ipq8078_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8078a_firmware cpe:2.3:o:qualcomm:ipq8078a_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8173_firmware cpe:2.3:o:qualcomm:ipq8173_firmware:-:*:*:*:*:*:*:*
qualcomm ipq8174_firmware cpe:2.3:o:qualcomm:ipq8174_firmware:-:*:*:*:*:*:*:*
qualcomm ipq9008_firmware cpe:2.3:o:qualcomm:ipq9008_firmware:-:*:*:*:*:*:*:*
qualcomm ipq9048_firmware cpe:2.3:o:qualcomm:ipq9048_firmware:-:*:*:*:*:*:*:*
qualcomm ipq9554_firmware cpe:2.3:o:qualcomm:ipq9554_firmware:-:*:*:*:*:*:*:*
qualcomm ipq9570_firmware cpe:2.3:o:qualcomm:ipq9570_firmware:-:*:*:*:*:*:*:*
qualcomm ipq9574_firmware cpe:2.3:o:qualcomm:ipq9574_firmware:-:*:*:*:*:*:*:*
qualcomm qrb5165n_firmware cpe:2.3:o:qualcomm:qrb5165n_firmware:-:*:*:*:*:*:*:*
qualcomm qru1032_firmware cpe:2.3:o:qualcomm:qru1032_firmware:-:*:*:*:*:*:*:*
qualcomm qru1052_firmware cpe:2.3:o:qualcomm:qru1052_firmware:-:*:*:*:*:*:*:*
qualcomm qru1062_firmware cpe:2.3:o:qualcomm:qru1062_firmware:-:*:*:*:*:*:*:*
qualcomm qsm8250_firmware cpe:2.3:o:qualcomm:qsm8250_firmware:-:*:*:*:*:*:*:*
qualcomm qsm8350_firmware cpe:2.3:o:qualcomm:qsm8350_firmware:-:*:*:*:*:*:*:*
qualcomm 215_mobile_firmware cpe:2.3:o:qualcomm:215_mobile_firmware:-:*:*:*:*:*:*:*
qualcomm video_collaboration_vc1_platform_firmware cpe:2.3:o:qualcomm:video_collaboration_vc1_platform_firmware:-:*:*:*:*:*:*:*
qualcomm video_collaboration_vc3_platform_firmware cpe:2.3:o:qualcomm:video_collaboration_vc3_platform_firmware:-:*:*:*:*:*:*:*
qualcomm video_collaboration_vc5_platform_firmware cpe:2.3:o:qualcomm:video_collaboration_vc5_platform_firmware:-:*:*:*:*:*:*:*
qualcomm robotics_rb2_firmware cpe:2.3:o:qualcomm:robotics_rb2_firmware:-:*:*:*:*:*:*:*
qualcomm robotics_rb5_firmware cpe:2.3:o:qualcomm:robotics_rb5_firmware:-:*:*:*:*:*:*:*
qualcomm sa2150p_firmware cpe:2.3:o:qualcomm:sa2150p_firmware:-:*:*:*:*:*:*:*
qualcomm sa4150p_firmware cpe:2.3:o:qualcomm:sa4150p_firmware:-:*:*:*:*:*:*:*
qualcomm sa4155p_firmware cpe:2.3:o:qualcomm:sa4155p_firmware:-:*:*:*:*:*:*:*
qualcomm sa6145p_firmware cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*
qualcomm sa6150p_firmware cpe:2.3:o:qualcomm:sa6150p_firmware:-:*:*:*:*:*:*:*
qualcomm sa6155_firmware cpe:2.3:o:qualcomm:sa6155_firmware:-:*:*:*:*:*:*:*
qualcomm sa6155p_firmware cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*
qualcomm sa7255p_firmware cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*
qualcomm sa7775p_firmware cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8145p_firmware cpe:2.3:o:qualcomm:sa8145p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8150p_firmware cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8155_firmware cpe:2.3:o:qualcomm:sa8155_firmware:-:*:*:*:*:*:*:*
qualcomm sa8155p_firmware cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8195p_firmware cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8255p_firmware cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8295p_firmware cpe:2.3:o:qualcomm:sa8295p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8530p_firmware cpe:2.3:o:qualcomm:sa8530p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8540p_firmware cpe:2.3:o:qualcomm:sa8540p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8620p_firmware cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8650p_firmware cpe:2.3:o:qualcomm:sa8650p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8770p_firmware cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*
qualcomm sa8775p_firmware cpe:2.3:o:qualcomm:sa8775p_firmware:-:*:*:*:*:*:*:*
qualcomm sa9000p_firmware cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*

CVE-2025-27042 の参考情報

cvelogic Threat Intelligence