Windows Kernel DDI Command Memory Corruption
CVE-2025-27069 Published on August 6, 2025

Untrusted Pointer Dereference in DSP Service
Memory corruption while processing DDI command calls.

NVD

Vulnerability Analysis

CVE-2025-27069 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Untrusted Pointer Dereference

The program obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.

Products Associated with CVE-2025-27069

Want to know whenever a new CVE is published for Microsoft Windows? stack.watch will email you.

Microsoft Windows

Affected Versions

Qualcomm, Inc. Snapdragon:

Version FastConnect 6900 is affected.
Version FastConnect 7800 is affected.
Version SC8380XP is affected.
Version WCD9380 is affected.
Version WCD9385 is affected.
Version WSA8840 is affected.
Version WSA8845 is affected.
Version WSA8845H is affected.

Exploit Probability

EPSS

0.02%

Percentile

3.40%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Windows Kernel DDI Command Memory CorruptionCVE-2025-27069 Published on August 6, 2025

Vulnerability Analysis

Weakness Type

Untrusted Pointer Dereference

Products Associated with CVE-2025-27069

Affected Versions

Exploit Probability

Windows Kernel DDI Command Memory Corruption
CVE-2025-27069 Published on August 6, 2025