Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    5888 vulnerabilities by Qualcomm, Inc.

    CVE-2026-25271 (GCVE-0-2026-25271)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:57
    VLAI
    Title
    Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service
    Summary
    Memory Corruption when processing asynchronous input parameters due to improper handling of modified values between check and use.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Cologne
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: IQX5121
    Affected: IQX7181
    Affected: QCA0000
    Affected: SC8380XP
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25271",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:56:29.845644Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:57:41.202Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "IQX5121"
                },
                {
                  "status": "affected",
                  "version": "IQX7181"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing asynchronous input parameters due to improper handling of modified values between check and use."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:42.512Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25271",
        "datePublished": "2026-07-06T20:09:42.512Z",
        "dateReserved": "2026-02-02T04:19:00.940Z",
        "dateUpdated": "2026-07-06T20:57:41.202Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25268 (GCVE-0-2026-25268)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:56
    VLAI
    Title
    Stack-based Buffer Overflow in WLAN Host
    Summary
    Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: 5G Fixed Wireless Access Platform
    Affected: AR8035
    Affected: CQ7790
    Affected: CQ8725S
    Affected: CSR8811
    Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: FWA Gen 3 Ultra Platform
    Affected: FWA Gen 5 Elite Platform
    Affected: Immersive Home 214 Platform
    Affected: Immersive Home 216 Platform
    Affected: Immersive Home 316 Platform
    Affected: Immersive Home 318 Platform
    Affected: Immersive Home 3210 Platform
    Affected: Immersive Home 326 Platform
    Affected: IPQ5010
    Affected: IPQ5028
    Affected: IPQ5300
    Affected: IPQ5302
    Affected: IPQ5312
    Affected: IPQ5332
    Affected: IPQ6000
    Affected: IPQ6010
    Affected: IPQ6018
    Affected: IPQ8076
    Affected: IPQ8078
    Affected: IPQ9008
    Affected: IPQ9048
    Affected: IPQ9554
    Affected: IPQ9570
    Affected: IPQ9574
    Affected: Kobuk
    Affected: Marina
    Affected: Networking Pro 1200 Platform
    Affected: Networking Pro 1210 Platform
    Affected: Networking Pro 1610 Platform
    Affected: Networking Pro 400 Platform
    Affected: Networking Pro 600 Platform
    Affected: Networking Pro 610 Platform
    Affected: Networking Pro 800 Platform
    Affected: Networking Pro 810 Platform
    Affected: Orne
    Affected: QCA0000
    Affected: QCA4024
    Affected: QCA6174A
    Affected: QCA8075
    Affected: QCA8080
    Affected: QCA8081
    Affected: QCA8082
    Affected: QCA8084
    Affected: QCA8085
    Affected: QCA8101
    Affected: QCA8102
    Affected: QCA8111
    Affected: QCA8112
    Affected: QCA8337
    Affected: QCA8384
    Affected: QCA8385
    Affected: QCA8386
    Affected: QCA9888
    Affected: QCA9889
    Affected: QCC710
    Affected: QCF8000
    Affected: QCF8001
    Affected: QCM5430
    Affected: QCM6490
    Affected: QCN5022
    Affected: QCN5024
    Affected: QCN5052
    Affected: QCN5122
    Affected: QCN5124
    Affected: QCN5152
    Affected: QCN5154
    Affected: QCN5164
    Affected: QCN5224
    Affected: QCN6023
    Affected: QCN6024
    Affected: QCN6112
    Affected: QCN6122
    Affected: QCN6132
    Affected: QCN6224
    Affected: QCN6274
    Affected: QCN6402
    Affected: QCN6412
    Affected: QCN6422
    Affected: QCN6432
    Affected: QCN9000
    Affected: QCN9012
    Affected: QCN9013
    Affected: QCN9022
    Affected: QCN9024
    Affected: QCN9070
    Affected: QCN9100
    Affected: QCN9160
    Affected: QCN9274
    Affected: QFW7114
    Affected: QFW7124
    Affected: QFW7224
    Affected: QMX82L
    Affected: QMX85L
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM8083
    Affected: SAR2130P
    Affected: SDX61
    Affected: SDX65M
    Affected: SDX81
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon Auto 5G Modem-RF
    Affected: Snapdragon X62 5G Modem-RF System
    Affected: Snapdragon X65 5G Modem-RF System
    Affected: Snapdragon X72 5G Modem-RF System
    Affected: Snapdragon X75 5G Modem-RF System
    Affected: SW-only
    Affected: WCD9340
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6755
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25268",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:56:10.674862Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:56:18.351Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile",
                "Snapdragon WBC",
                "Snapdragon Wired Infrastructure and Networking"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "5G Fixed Wireless Access Platform"
                },
                {
                  "status": "affected",
                  "version": "AR8035"
                },
                {
                  "status": "affected",
                  "version": "CQ7790"
                },
                {
                  "status": "affected",
                  "version": "CQ8725S"
                },
                {
                  "status": "affected",
                  "version": "CSR8811"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "FWA Gen 3 Ultra Platform"
                },
                {
                  "status": "affected",
                  "version": "FWA Gen 5 Elite Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 214 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 216 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 316 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 318 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 3210 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 326 Platform"
                },
                {
                  "status": "affected",
                  "version": "IPQ5010"
                },
                {
                  "status": "affected",
                  "version": "IPQ5028"
                },
                {
                  "status": "affected",
                  "version": "IPQ5300"
                },
                {
                  "status": "affected",
                  "version": "IPQ5302"
                },
                {
                  "status": "affected",
                  "version": "IPQ5312"
                },
                {
                  "status": "affected",
                  "version": "IPQ5332"
                },
                {
                  "status": "affected",
                  "version": "IPQ6000"
                },
                {
                  "status": "affected",
                  "version": "IPQ6010"
                },
                {
                  "status": "affected",
                  "version": "IPQ6018"
                },
                {
                  "status": "affected",
                  "version": "IPQ8076"
                },
                {
                  "status": "affected",
                  "version": "IPQ8078"
                },
                {
                  "status": "affected",
                  "version": "IPQ9008"
                },
                {
                  "status": "affected",
                  "version": "IPQ9048"
                },
                {
                  "status": "affected",
                  "version": "IPQ9554"
                },
                {
                  "status": "affected",
                  "version": "IPQ9570"
                },
                {
                  "status": "affected",
                  "version": "IPQ9574"
                },
                {
                  "status": "affected",
                  "version": "Kobuk"
                },
                {
                  "status": "affected",
                  "version": "Marina"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 1200 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 1210 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 1610 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 400 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 600 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 610 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 800 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 810 Platform"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "QCA4024"
                },
                {
                  "status": "affected",
                  "version": "QCA6174A"
                },
                {
                  "status": "affected",
                  "version": "QCA8075"
                },
                {
                  "status": "affected",
                  "version": "QCA8080"
                },
                {
                  "status": "affected",
                  "version": "QCA8081"
                },
                {
                  "status": "affected",
                  "version": "QCA8082"
                },
                {
                  "status": "affected",
                  "version": "QCA8084"
                },
                {
                  "status": "affected",
                  "version": "QCA8085"
                },
                {
                  "status": "affected",
                  "version": "QCA8101"
                },
                {
                  "status": "affected",
                  "version": "QCA8102"
                },
                {
                  "status": "affected",
                  "version": "QCA8111"
                },
                {
                  "status": "affected",
                  "version": "QCA8112"
                },
                {
                  "status": "affected",
                  "version": "QCA8337"
                },
                {
                  "status": "affected",
                  "version": "QCA8384"
                },
                {
                  "status": "affected",
                  "version": "QCA8385"
                },
                {
                  "status": "affected",
                  "version": "QCA8386"
                },
                {
                  "status": "affected",
                  "version": "QCA9888"
                },
                {
                  "status": "affected",
                  "version": "QCA9889"
                },
                {
                  "status": "affected",
                  "version": "QCC710"
                },
                {
                  "status": "affected",
                  "version": "QCF8000"
                },
                {
                  "status": "affected",
                  "version": "QCF8001"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QCN5022"
                },
                {
                  "status": "affected",
                  "version": "QCN5024"
                },
                {
                  "status": "affected",
                  "version": "QCN5052"
                },
                {
                  "status": "affected",
                  "version": "QCN5122"
                },
                {
                  "status": "affected",
                  "version": "QCN5124"
                },
                {
                  "status": "affected",
                  "version": "QCN5152"
                },
                {
                  "status": "affected",
                  "version": "QCN5154"
                },
                {
                  "status": "affected",
                  "version": "QCN5164"
                },
                {
                  "status": "affected",
                  "version": "QCN5224"
                },
                {
                  "status": "affected",
                  "version": "QCN6023"
                },
                {
                  "status": "affected",
                  "version": "QCN6024"
                },
                {
                  "status": "affected",
                  "version": "QCN6112"
                },
                {
                  "status": "affected",
                  "version": "QCN6122"
                },
                {
                  "status": "affected",
                  "version": "QCN6132"
                },
                {
                  "status": "affected",
                  "version": "QCN6224"
                },
                {
                  "status": "affected",
                  "version": "QCN6274"
                },
                {
                  "status": "affected",
                  "version": "QCN6402"
                },
                {
                  "status": "affected",
                  "version": "QCN6412"
                },
                {
                  "status": "affected",
                  "version": "QCN6422"
                },
                {
                  "status": "affected",
                  "version": "QCN6432"
                },
                {
                  "status": "affected",
                  "version": "QCN9000"
                },
                {
                  "status": "affected",
                  "version": "QCN9012"
                },
                {
                  "status": "affected",
                  "version": "QCN9013"
                },
                {
                  "status": "affected",
                  "version": "QCN9022"
                },
                {
                  "status": "affected",
                  "version": "QCN9024"
                },
                {
                  "status": "affected",
                  "version": "QCN9070"
                },
                {
                  "status": "affected",
                  "version": "QCN9100"
                },
                {
                  "status": "affected",
                  "version": "QCN9160"
                },
                {
                  "status": "affected",
                  "version": "QCN9274"
                },
                {
                  "status": "affected",
                  "version": "QFW7114"
                },
                {
                  "status": "affected",
                  "version": "QFW7124"
                },
                {
                  "status": "affected",
                  "version": "QFW7224"
                },
                {
                  "status": "affected",
                  "version": "QMX82L"
                },
                {
                  "status": "affected",
                  "version": "QMX85L"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM8083"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SDX61"
                },
                {
                  "status": "affected",
                  "version": "SDX65M"
                },
                {
                  "status": "affected",
                  "version": "SDX81"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon Auto 5G Modem-RF"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X62 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X65 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X72 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X75 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "SW-only"
                },
                {
                  "status": "affected",
                  "version": "WCD9340"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:41.411Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Stack-based Buffer Overflow in WLAN Host"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25268",
        "datePublished": "2026-07-06T20:09:41.411Z",
        "dateReserved": "2026-02-02T04:19:00.940Z",
        "dateUpdated": "2026-07-06T20:56:18.351Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21384 (GCVE-0-2026-21384)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:55
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when updating prepared commands with invalid port indices based on user space input exceeds supported read client limits.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Netrani
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595
    Affected: QCA6595AU
    Affected: QCA6678AQ
    Affected: QCA6698AQ
    Affected: QCA6698AU
    Affected: QCA6797AQ
    Affected: QCM4490
    Affected: QCM5430
    Affected: QCM6490
    Affected: QCM8838
    Affected: QCS4490
    Affected: QCS8550
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD 8 Gen1 5G
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM7435
    Affected: Snapdragon 4 Gen 2 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 6 Gen 1 Mobile Platform
    Affected: Snapdragon 6 Gen 3 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 7 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 1 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21384",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:55:45.833104Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:55:58.107Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Netrani"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6678AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QCS8550"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD 8 Gen1 5G"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM7435"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when updating prepared commands with invalid port indices based on user space input exceeds supported read client limits."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:40.351Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21384",
        "datePublished": "2026-07-06T20:09:40.351Z",
        "dateReserved": "2025-12-17T04:35:45.743Z",
        "dateUpdated": "2026-07-06T20:55:58.107Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21383 (GCVE-0-2026-21383)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:55
    VLAI
    Title
    Reusing a Nonce, Key Pair in Encryption in HLOS
    Summary
    Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-323 - Reusing a Nonce, Key Pair in Encryption
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAM8397P
    Affected: QAM8797P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595AU
    Affected: QCA6696
    Affected: QCA6698AQ
    Affected: QCA6797AQ
    Affected: QCA8695AU
    Affected: QDU1000
    Affected: QDU1110
    Affected: QDU1210
    Affected: QDX1010
    Affected: QDX1011
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Dragonwing X100 Accelerator Card
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR1165P
    Affected: SAR2130P
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon AR1+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCN3950
    Affected: WCN7860
    Affected: WCN7861
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21383",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:55:25.178549Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:55:34.146Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAM8397P"
                },
                {
                  "status": "affected",
                  "version": "QAM8797P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6696"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA8695AU"
                },
                {
                  "status": "affected",
                  "version": "QDU1000"
                },
                {
                  "status": "affected",
                  "version": "QDU1110"
                },
                {
                  "status": "affected",
                  "version": "QDU1210"
                },
                {
                  "status": "affected",
                  "version": "QDX1010"
                },
                {
                  "status": "affected",
                  "version": "QDX1011"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Dragonwing X100 Accelerator Card"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR1165P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-323",
                  "description": "CWE-323: Reusing a Nonce, Key Pair in Encryption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:39.251Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Reusing a Nonce, Key Pair in Encryption in HLOS"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21383",
        "datePublished": "2026-07-06T20:09:39.251Z",
        "dateReserved": "2025-12-17T04:35:45.743Z",
        "dateUpdated": "2026-07-06T20:55:34.146Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21379 (GCVE-0-2026-21379)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:55
    VLAI
    Title
    Buffer Over-read in Windows Compute
    Summary
    Memory Corruption when allocating memory with sizes that exceed the maximum allowed value.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: AQT1000
    Affected: Cologne
    Affected: FastConnect 6200
    Affected: FastConnect 6700
    Affected: FastConnect 6800
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: IQX5121
    Affected: IQX7181
    Affected: QCA0000
    Affected: QCA6391
    Affected: QCA6420
    Affected: QCA6430
    Affected: QCM5430
    Affected: QCM6490
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: SC8380XP
    Affected: Snapdragon 7c+ Gen 3 Compute
    Affected: Snapdragon 8c Compute Platform "Poipu Lite"
    Affected: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite"
    Affected: Snapdragon 8cx Compute Platform
    Affected: Snapdragon 8cx Compute Platform "Poipu Pro"
    Affected: Snapdragon 8cx Gen 2 5G Compute Platform
    Affected: Snapdragon 8cx Gen 2 5G Compute Platform "Poipu Pro"
    Affected: Snapdragon 8cx Gen 3 Compute Platform
    Affected: WCD9340
    Affected: WCD9341
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21379",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:55:02.410730Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:55:11.175Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "AQT1000"
                },
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6200"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6800"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "IQX5121"
                },
                {
                  "status": "affected",
                  "version": "IQX7181"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "QCA6391"
                },
                {
                  "status": "affected",
                  "version": "QCA6420"
                },
                {
                  "status": "affected",
                  "version": "QCA6430"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7c+ Gen 3 Compute"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8c Compute Platform \"Poipu Lite\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Compute Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Compute Platform \"Poipu Pro\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Gen 2 5G Compute Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Gen 2 5G Compute Platform \"Poipu Pro\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Gen 3 Compute Platform"
                },
                {
                  "status": "affected",
                  "version": "WCD9340"
                },
                {
                  "status": "affected",
                  "version": "WCD9341"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when allocating memory with sizes that exceed the maximum allowed value."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-126",
                  "description": "CWE-126 Buffer Over-read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:38.160Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Buffer Over-read in Windows Compute"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21379",
        "datePublished": "2026-07-06T20:09:38.160Z",
        "dateReserved": "2025-12-17T04:35:45.743Z",
        "dateUpdated": "2026-07-06T20:55:11.175Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21370 (GCVE-0-2026-21370)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:53
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: G3x Gen 2
    Affected: IQ9 Series Platform
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Netrani
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595
    Affected: QCA6595AU
    Affected: QCA6678AQ
    Affected: QCA6698AQ
    Affected: QCA6698AU
    Affected: QCA6797AQ
    Affected: QCM4490
    Affected: QCM8838
    Affected: QCS4490
    Affected: QCS8550
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD 8 Gen1 5G
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM7435
    Affected: SM7525
    Affected: SM7550
    Affected: SM7550P
    Affected: SM8550P
    Affected: Snapdragon 4 Gen 2 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 6 Gen 1 Mobile Platform
    Affected: Snapdragon 6 Gen 3 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 7 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9371
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9390
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN6650
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X1E80100
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21370",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:53:15.062848Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:53:26.103Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "G3x Gen 2"
                },
                {
                  "status": "affected",
                  "version": "IQ9 Series Platform"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Netrani"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6678AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QCS8550"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD 8 Gen1 5G"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM7435"
                },
                {
                  "status": "affected",
                  "version": "SM7525"
                },
                {
                  "status": "affected",
                  "version": "SM7550"
                },
                {
                  "status": "affected",
                  "version": "SM7550P"
                },
                {
                  "status": "affected",
                  "version": "SM8550P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9371"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9390"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN6650"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X1E80100"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:37.081Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21370",
        "datePublished": "2026-07-06T20:09:37.081Z",
        "dateReserved": "2025-12-17T04:35:45.742Z",
        "dateUpdated": "2026-07-06T20:53:26.103Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21369 (GCVE-0-2026-21369)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:54
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6200
    Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: G1 Gen 1
    Affected: G3x Gen 2
    Affected: IQ9 Series Platform
    Affected: Kalpeni
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAM8295P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6574AU
    Affected: QCA6595
    Affected: QCA6688AQ
    Affected: QCA6696
    Affected: QCA6698AQ
    Affected: QCA6797AQ
    Affected: QCA8695AU
    Affected: QCM2290
    Affected: QCM4325
    Affected: QCM4490
    Affected: QCM5430
    Affected: QCM6490
    Affected: QCM8838
    Affected: QCS2290
    Affected: QCS4290
    Affected: QCS4490
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA6155P
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8155P
    Affected: SA8195P
    Affected: SA8255P
    Affected: SA8295P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD662
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM6225P
    Affected: SM7525
    Affected: SM7550
    Affected: SM7550P
    Affected: SM8550P
    Affected: Snapdragon 4 Gen 1 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 480 5G Mobile Platform
    Affected: Snapdragon 480+ 5G Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 680 4G Mobile Platform
    Affected: Snapdragon 685 4G Mobile Platform
    Affected: Snapdragon 695 5G Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: Snapdragon Wear Elite platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: Themisto
    Affected: WCD9370
    Affected: WCD9371
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9390
    Affected: WCD9395
    Affected: WCN3910
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN6650
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X1E80100
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21369",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:54:37.570594Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:54:46.817Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile",
                "Snapdragon Wearables"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6200"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "G1 Gen 1"
                },
                {
                  "status": "affected",
                  "version": "G3x Gen 2"
                },
                {
                  "status": "affected",
                  "version": "IQ9 Series Platform"
                },
                {
                  "status": "affected",
                  "version": "Kalpeni"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAM8295P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6574AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6688AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6696"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA8695AU"
                },
                {
                  "status": "affected",
                  "version": "QCM2290"
                },
                {
                  "status": "affected",
                  "version": "QCM4325"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS2290"
                },
                {
                  "status": "affected",
                  "version": "QCS4290"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA6155P"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8155P"
                },
                {
                  "status": "affected",
                  "version": "SA8195P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8295P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD662"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM6225P"
                },
                {
                  "status": "affected",
                  "version": "SM7525"
                },
                {
                  "status": "affected",
                  "version": "SM7550"
                },
                {
                  "status": "affected",
                  "version": "SM7550P"
                },
                {
                  "status": "affected",
                  "version": "SM8550P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 480 5G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 480+ 5G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 680 4G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 685 4G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 695 5G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon Wear Elite platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "Themisto"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9371"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9390"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3910"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN6650"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X1E80100"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:35.999Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21369",
        "datePublished": "2026-07-06T20:09:35.999Z",
        "dateReserved": "2025-12-17T04:35:45.742Z",
        "dateUpdated": "2026-07-06T20:54:46.817Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21368 (GCVE-0-2026-21368)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:54
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: G3x Gen 2
    Affected: IQ9 Series Platform
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Netrani
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595
    Affected: QCA6595AU
    Affected: QCA6678AQ
    Affected: QCA6698AQ
    Affected: QCA6698AU
    Affected: QCA6797AQ
    Affected: QCM4490
    Affected: QCM8838
    Affected: QCS4490
    Affected: QCS8550
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD 8 Gen1 5G
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM7435
    Affected: SM7525
    Affected: SM7550
    Affected: SM7550P
    Affected: SM8550P
    Affected: Snapdragon 4 Gen 2 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 6 Gen 1 Mobile Platform
    Affected: Snapdragon 6 Gen 3 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 7 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9371
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9390
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN6650
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X1E80100
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21368",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:54:17.998443Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:54:28.033Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "G3x Gen 2"
                },
                {
                  "status": "affected",
                  "version": "IQ9 Series Platform"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Netrani"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6678AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QCS8550"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD 8 Gen1 5G"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM7435"
                },
                {
                  "status": "affected",
                  "version": "SM7525"
                },
                {
                  "status": "affected",
                  "version": "SM7550"
                },
                {
                  "status": "affected",
                  "version": "SM7550P"
                },
                {
                  "status": "affected",
                  "version": "SM8550P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9371"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9390"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN6650"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X1E80100"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:34.872Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21368",
        "datePublished": "2026-07-06T20:09:34.872Z",
        "dateReserved": "2025-12-17T04:35:45.742Z",
        "dateUpdated": "2026-07-06T20:54:28.033Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-59617 (GCVE-0-2025-59617)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:54
    VLAI
    Title
    Use After Free in Computer Vision
    Summary
    Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: Molokai
    Affected: Orne
    Affected: Pandeiro
    Affected: QCM5430
    Affected: QCM6490
    Affected: QMP1000
    Affected: QMP2001
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: SC8380XP
    Affected: SD865 5G
    Affected: SM6850
    Affected: SM8845P
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 8 Elite Gen 5
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN7760
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7880
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: WSA8850
    Affected: WSA8850W
    Affected: WSA8855C
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-59617",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:53:57.823352Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:54:07.672Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon MC",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "Molokai"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QMP1000"
                },
                {
                  "status": "affected",
                  "version": "QMP2001"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SM6850"
                },
                {
                  "status": "affected",
                  "version": "SM8845P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN7760"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7880"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "WSA8850"
                },
                {
                  "status": "affected",
                  "version": "WSA8850W"
                },
                {
                  "status": "affected",
                  "version": "WSA8855C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416 Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:33.799Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Use After Free in Computer Vision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2025-59617",
        "datePublished": "2026-07-06T20:09:33.799Z",
        "dateReserved": "2025-09-18T03:19:23.202Z",
        "dateUpdated": "2026-07-06T20:54:07.672Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-59616 (GCVE-0-2025-59616)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:53
    VLAI
    Title
    Use After Free in Computer Vision
    Summary
    Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: Molokai
    Affected: Orne
    Affected: Pandeiro
    Affected: QCM5430
    Affected: QCM6490
    Affected: QMP1000
    Affected: QMP2001
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: SC8380XP
    Affected: SD865 5G
    Affected: SM6850
    Affected: SM8845P
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 8 Elite Gen 5
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN7760
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7880
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: WSA8850
    Affected: WSA8850W
    Affected: WSA8855C
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-59616",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:53:38.832699Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:53:46.541Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon MC",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "Molokai"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QMP1000"
                },
                {
                  "status": "affected",
                  "version": "QMP2001"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SM6850"
                },
                {
                  "status": "affected",
                  "version": "SM8845P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN7760"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7880"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "WSA8850"
                },
                {
                  "status": "affected",
                  "version": "WSA8850W"
                },
                {
                  "status": "affected",
                  "version": "WSA8855C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416 Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:32.700Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Use After Free in Computer Vision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2025-59616",
        "datePublished": "2026-07-06T20:09:32.700Z",
        "dateReserved": "2025-09-18T03:19:23.202Z",
        "dateUpdated": "2026-07-06T20:53:46.541Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-59615 (GCVE-0-2025-59615)

    Vulnerability from nvd – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:49
    VLAI
    Title
    Use After Free in Computer Vision
    Summary
    Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: Molokai
    Affected: Orne
    Affected: Pandeiro
    Affected: QCM5430
    Affected: QCM6490
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QMP1000
    Affected: QMP2001
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SC8380XP
    Affected: SD865 5G
    Affected: SM6850
    Affected: SM8845P
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 8 Elite Gen 5
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN7760
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7880
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: WSA8850
    Affected: WSA8850W
    Affected: WSA8855C
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-59615",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:48:42.835447Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:49:30.808Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon MC",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "Molokai"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QMP1000"
                },
                {
                  "status": "affected",
                  "version": "QMP2001"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SM6850"
                },
                {
                  "status": "affected",
                  "version": "SM8845P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN7760"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7880"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "WSA8850"
                },
                {
                  "status": "affected",
                  "version": "WSA8850W"
                },
                {
                  "status": "affected",
                  "version": "WSA8855C"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416 Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:31.634Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Use After Free in Computer Vision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2025-59615",
        "datePublished": "2026-07-06T20:09:31.634Z",
        "dateReserved": "2025-09-18T03:19:23.202Z",
        "dateUpdated": "2026-07-06T20:49:30.808Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25277 (GCVE-0-2026-25277)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-03 03:55
    VLAI
    Title
    Buffer Copy Without Checking Size of Input in Secure Processor
    Summary
    Memory corruption while using Strongbox due to buffer overflow.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-120 - Buffer Copy Without Checking Size of Input ('Classic Buffer Overflow')
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon 8 Gen 3 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Elite Gen 5
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25277",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T03:55:48.773Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory corruption while using Strongbox due to buffer overflow."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-120",
                  "description": "CWE-120 Buffer Copy Without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:49.656Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Buffer Copy Without Checking Size of Input in Secure Processor"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25277",
        "datePublished": "2026-06-01T22:05:49.656Z",
        "dateReserved": "2026-02-02T04:19:00.941Z",
        "dateUpdated": "2026-06-03T03:55:48.773Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25276 (GCVE-0-2026-25276)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-03 03:55
    VLAI
    Title
    Improper Validation of Array Index in Secure Processor
    Summary
    Memory corruption while using Strongbox due to missing bounds check.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-129 - Improper Validation of Array Index
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon 8 Gen 3 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Elite Gen 5
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25276",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T03:55:49.904Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory corruption while using Strongbox due to missing bounds check."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-129",
                  "description": "CWE-129 Improper Validation of Array Index",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:48.584Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Improper Validation of Array Index in Secure Processor"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25276",
        "datePublished": "2026-06-01T22:05:48.584Z",
        "dateReserved": "2026-02-02T04:19:00.941Z",
        "dateUpdated": "2026-06-03T03:55:49.904Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25260 (GCVE-0-2026-25260)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-03 03:55
    VLAI
    Title
    Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service
    Summary
    Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Cologne
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: QCA0000
    Affected: SC8380XP
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25260",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T03:55:51.034Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:45.336Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25260",
        "datePublished": "2026-06-01T22:05:45.336Z",
        "dateReserved": "2026-02-02T04:19:00.939Z",
        "dateUpdated": "2026-06-03T03:55:51.034Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25259 (GCVE-0-2026-25259)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-03 03:55
    VLAI
    Title
    Out-of-bounds Write in DSP Service
    Summary
    Memory corruption while processing multiple IOCTL command for escape operations.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Cologne
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: QCA0000
    Affected: SC8380XP
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25259",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T03:55:52.198Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory corruption while processing multiple IOCTL command for escape operations."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:43.934Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in DSP Service"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25259",
        "datePublished": "2026-06-01T22:05:43.934Z",
        "dateReserved": "2026-02-02T04:19:00.939Z",
        "dateUpdated": "2026-06-03T03:55:52.198Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25258 (GCVE-0-2026-25258)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-03 03:55
    VLAI
    Title
    Out-of-bounds Read in DSP Service
    Summary
    Memory corruption while processing IOCTL calls for escape operations.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Cologne
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: QCA0000
    Affected: SC8380XP
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T03:55:53.350Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory corruption while processing IOCTL calls for escape operations."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "CWE-125: Out-of-bounds Read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:42.726Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Read in DSP Service"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25258",
        "datePublished": "2026-06-01T22:05:42.726Z",
        "dateReserved": "2026-02-02T04:19:00.939Z",
        "dateUpdated": "2026-06-03T03:55:53.350Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-24092 (GCVE-0-2026-24092)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-02 12:12
    VLAI
    Title
    Improper Validation of Syntactic Correctness of Input in Display
    Summary
    Memory Corruption when processing fastboot commands to set display mode.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1286 - Improper Validation of Syntactic Correctness of Input
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-24092",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T12:06:56.042807Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T12:12:26.514Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing fastboot commands to set display mode."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "PHYSICAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1286",
                  "description": "CWE-1286: Improper Validation of Syntactic Correctness of Input",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:41.591Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Improper Validation of Syntactic Correctness of Input in Display"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-24092",
        "datePublished": "2026-06-01T22:05:41.591Z",
        "dateReserved": "2026-01-21T12:51:13.996Z",
        "dateUpdated": "2026-06-02T12:12:26.514Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-24091 (GCVE-0-2026-24091)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-02 12:12
    VLAI
    Title
    Improper Validation of Syntactic Correctness of Input in Display
    Summary
    Memory corruption while processing fastboot commands with improperly formatted input.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1286 - Improper Validation of Syntactic Correctness of Input
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-24091",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T12:07:12.515624Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-02T12:12:40.634Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory corruption while processing fastboot commands with improperly formatted input."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "PHYSICAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1286",
                  "description": "CWE-1286: Improper Validation of Syntactic Correctness of Input",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:40.458Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Improper Validation of Syntactic Correctness of Input in Display"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-24091",
        "datePublished": "2026-06-01T22:05:40.458Z",
        "dateReserved": "2026-01-21T12:51:13.996Z",
        "dateUpdated": "2026-06-02T12:12:40.634Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-24090 (GCVE-0-2026-24090)

    Vulnerability from nvd – Published: 2026-06-01 22:05 – Updated: 2026-06-03 03:55
    VLAI
    Title
    Missing Authentication for Critical Function in HLOS
    Summary
    Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-24090",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-02T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T03:55:54.473Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306: Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-01T22:05:39.371Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html"
            }
          ],
          "title": "Missing Authentication for Critical Function in HLOS"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-24090",
        "datePublished": "2026-06-01T22:05:39.371Z",
        "dateReserved": "2026-01-21T12:51:13.996Z",
        "dateUpdated": "2026-06-03T03:55:54.473Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25271 (GCVE-0-2026-25271)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:57
    VLAI
    Title
    Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service
    Summary
    Memory Corruption when processing asynchronous input parameters due to improper handling of modified values between check and use.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: Cologne
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: IQX5121
    Affected: IQX7181
    Affected: QCA0000
    Affected: SC8380XP
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25271",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:56:29.845644Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:57:41.202Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "IQX5121"
                },
                {
                  "status": "affected",
                  "version": "IQX7181"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing asynchronous input parameters due to improper handling of modified values between check and use."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:42.512Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25271",
        "datePublished": "2026-07-06T20:09:42.512Z",
        "dateReserved": "2026-02-02T04:19:00.940Z",
        "dateUpdated": "2026-07-06T20:57:41.202Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-25268 (GCVE-0-2026-25268)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:56
    VLAI
    Title
    Stack-based Buffer Overflow in WLAN Host
    Summary
    Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based Buffer Overflow
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: 5G Fixed Wireless Access Platform
    Affected: AR8035
    Affected: CQ7790
    Affected: CQ8725S
    Affected: CSR8811
    Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: FWA Gen 3 Ultra Platform
    Affected: FWA Gen 5 Elite Platform
    Affected: Immersive Home 214 Platform
    Affected: Immersive Home 216 Platform
    Affected: Immersive Home 316 Platform
    Affected: Immersive Home 318 Platform
    Affected: Immersive Home 3210 Platform
    Affected: Immersive Home 326 Platform
    Affected: IPQ5010
    Affected: IPQ5028
    Affected: IPQ5300
    Affected: IPQ5302
    Affected: IPQ5312
    Affected: IPQ5332
    Affected: IPQ6000
    Affected: IPQ6010
    Affected: IPQ6018
    Affected: IPQ8076
    Affected: IPQ8078
    Affected: IPQ9008
    Affected: IPQ9048
    Affected: IPQ9554
    Affected: IPQ9570
    Affected: IPQ9574
    Affected: Kobuk
    Affected: Marina
    Affected: Networking Pro 1200 Platform
    Affected: Networking Pro 1210 Platform
    Affected: Networking Pro 1610 Platform
    Affected: Networking Pro 400 Platform
    Affected: Networking Pro 600 Platform
    Affected: Networking Pro 610 Platform
    Affected: Networking Pro 800 Platform
    Affected: Networking Pro 810 Platform
    Affected: Orne
    Affected: QCA0000
    Affected: QCA4024
    Affected: QCA6174A
    Affected: QCA8075
    Affected: QCA8080
    Affected: QCA8081
    Affected: QCA8082
    Affected: QCA8084
    Affected: QCA8085
    Affected: QCA8101
    Affected: QCA8102
    Affected: QCA8111
    Affected: QCA8112
    Affected: QCA8337
    Affected: QCA8384
    Affected: QCA8385
    Affected: QCA8386
    Affected: QCA9888
    Affected: QCA9889
    Affected: QCC710
    Affected: QCF8000
    Affected: QCF8001
    Affected: QCM5430
    Affected: QCM6490
    Affected: QCN5022
    Affected: QCN5024
    Affected: QCN5052
    Affected: QCN5122
    Affected: QCN5124
    Affected: QCN5152
    Affected: QCN5154
    Affected: QCN5164
    Affected: QCN5224
    Affected: QCN6023
    Affected: QCN6024
    Affected: QCN6112
    Affected: QCN6122
    Affected: QCN6132
    Affected: QCN6224
    Affected: QCN6274
    Affected: QCN6402
    Affected: QCN6412
    Affected: QCN6422
    Affected: QCN6432
    Affected: QCN9000
    Affected: QCN9012
    Affected: QCN9013
    Affected: QCN9022
    Affected: QCN9024
    Affected: QCN9070
    Affected: QCN9100
    Affected: QCN9160
    Affected: QCN9274
    Affected: QFW7114
    Affected: QFW7124
    Affected: QFW7224
    Affected: QMX82L
    Affected: QMX85L
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM8083
    Affected: SAR2130P
    Affected: SDX61
    Affected: SDX65M
    Affected: SDX81
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon Auto 5G Modem-RF
    Affected: Snapdragon X62 5G Modem-RF System
    Affected: Snapdragon X65 5G Modem-RF System
    Affected: Snapdragon X72 5G Modem-RF System
    Affected: Snapdragon X75 5G Modem-RF System
    Affected: SW-only
    Affected: WCD9340
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6755
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-25268",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:56:10.674862Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:56:18.351Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile",
                "Snapdragon WBC",
                "Snapdragon Wired Infrastructure and Networking"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "5G Fixed Wireless Access Platform"
                },
                {
                  "status": "affected",
                  "version": "AR8035"
                },
                {
                  "status": "affected",
                  "version": "CQ7790"
                },
                {
                  "status": "affected",
                  "version": "CQ8725S"
                },
                {
                  "status": "affected",
                  "version": "CSR8811"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "FWA Gen 3 Ultra Platform"
                },
                {
                  "status": "affected",
                  "version": "FWA Gen 5 Elite Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 214 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 216 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 316 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 318 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 3210 Platform"
                },
                {
                  "status": "affected",
                  "version": "Immersive Home 326 Platform"
                },
                {
                  "status": "affected",
                  "version": "IPQ5010"
                },
                {
                  "status": "affected",
                  "version": "IPQ5028"
                },
                {
                  "status": "affected",
                  "version": "IPQ5300"
                },
                {
                  "status": "affected",
                  "version": "IPQ5302"
                },
                {
                  "status": "affected",
                  "version": "IPQ5312"
                },
                {
                  "status": "affected",
                  "version": "IPQ5332"
                },
                {
                  "status": "affected",
                  "version": "IPQ6000"
                },
                {
                  "status": "affected",
                  "version": "IPQ6010"
                },
                {
                  "status": "affected",
                  "version": "IPQ6018"
                },
                {
                  "status": "affected",
                  "version": "IPQ8076"
                },
                {
                  "status": "affected",
                  "version": "IPQ8078"
                },
                {
                  "status": "affected",
                  "version": "IPQ9008"
                },
                {
                  "status": "affected",
                  "version": "IPQ9048"
                },
                {
                  "status": "affected",
                  "version": "IPQ9554"
                },
                {
                  "status": "affected",
                  "version": "IPQ9570"
                },
                {
                  "status": "affected",
                  "version": "IPQ9574"
                },
                {
                  "status": "affected",
                  "version": "Kobuk"
                },
                {
                  "status": "affected",
                  "version": "Marina"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 1200 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 1210 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 1610 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 400 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 600 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 610 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 800 Platform"
                },
                {
                  "status": "affected",
                  "version": "Networking Pro 810 Platform"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "QCA4024"
                },
                {
                  "status": "affected",
                  "version": "QCA6174A"
                },
                {
                  "status": "affected",
                  "version": "QCA8075"
                },
                {
                  "status": "affected",
                  "version": "QCA8080"
                },
                {
                  "status": "affected",
                  "version": "QCA8081"
                },
                {
                  "status": "affected",
                  "version": "QCA8082"
                },
                {
                  "status": "affected",
                  "version": "QCA8084"
                },
                {
                  "status": "affected",
                  "version": "QCA8085"
                },
                {
                  "status": "affected",
                  "version": "QCA8101"
                },
                {
                  "status": "affected",
                  "version": "QCA8102"
                },
                {
                  "status": "affected",
                  "version": "QCA8111"
                },
                {
                  "status": "affected",
                  "version": "QCA8112"
                },
                {
                  "status": "affected",
                  "version": "QCA8337"
                },
                {
                  "status": "affected",
                  "version": "QCA8384"
                },
                {
                  "status": "affected",
                  "version": "QCA8385"
                },
                {
                  "status": "affected",
                  "version": "QCA8386"
                },
                {
                  "status": "affected",
                  "version": "QCA9888"
                },
                {
                  "status": "affected",
                  "version": "QCA9889"
                },
                {
                  "status": "affected",
                  "version": "QCC710"
                },
                {
                  "status": "affected",
                  "version": "QCF8000"
                },
                {
                  "status": "affected",
                  "version": "QCF8001"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QCN5022"
                },
                {
                  "status": "affected",
                  "version": "QCN5024"
                },
                {
                  "status": "affected",
                  "version": "QCN5052"
                },
                {
                  "status": "affected",
                  "version": "QCN5122"
                },
                {
                  "status": "affected",
                  "version": "QCN5124"
                },
                {
                  "status": "affected",
                  "version": "QCN5152"
                },
                {
                  "status": "affected",
                  "version": "QCN5154"
                },
                {
                  "status": "affected",
                  "version": "QCN5164"
                },
                {
                  "status": "affected",
                  "version": "QCN5224"
                },
                {
                  "status": "affected",
                  "version": "QCN6023"
                },
                {
                  "status": "affected",
                  "version": "QCN6024"
                },
                {
                  "status": "affected",
                  "version": "QCN6112"
                },
                {
                  "status": "affected",
                  "version": "QCN6122"
                },
                {
                  "status": "affected",
                  "version": "QCN6132"
                },
                {
                  "status": "affected",
                  "version": "QCN6224"
                },
                {
                  "status": "affected",
                  "version": "QCN6274"
                },
                {
                  "status": "affected",
                  "version": "QCN6402"
                },
                {
                  "status": "affected",
                  "version": "QCN6412"
                },
                {
                  "status": "affected",
                  "version": "QCN6422"
                },
                {
                  "status": "affected",
                  "version": "QCN6432"
                },
                {
                  "status": "affected",
                  "version": "QCN9000"
                },
                {
                  "status": "affected",
                  "version": "QCN9012"
                },
                {
                  "status": "affected",
                  "version": "QCN9013"
                },
                {
                  "status": "affected",
                  "version": "QCN9022"
                },
                {
                  "status": "affected",
                  "version": "QCN9024"
                },
                {
                  "status": "affected",
                  "version": "QCN9070"
                },
                {
                  "status": "affected",
                  "version": "QCN9100"
                },
                {
                  "status": "affected",
                  "version": "QCN9160"
                },
                {
                  "status": "affected",
                  "version": "QCN9274"
                },
                {
                  "status": "affected",
                  "version": "QFW7114"
                },
                {
                  "status": "affected",
                  "version": "QFW7124"
                },
                {
                  "status": "affected",
                  "version": "QFW7224"
                },
                {
                  "status": "affected",
                  "version": "QMX82L"
                },
                {
                  "status": "affected",
                  "version": "QMX85L"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM8083"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SDX61"
                },
                {
                  "status": "affected",
                  "version": "SDX65M"
                },
                {
                  "status": "affected",
                  "version": "SDX81"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon Auto 5G Modem-RF"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X62 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X65 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X72 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon X75 5G Modem-RF System"
                },
                {
                  "status": "affected",
                  "version": "SW-only"
                },
                {
                  "status": "affected",
                  "version": "WCD9340"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based Buffer Overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:41.411Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Stack-based Buffer Overflow in WLAN Host"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-25268",
        "datePublished": "2026-07-06T20:09:41.411Z",
        "dateReserved": "2026-02-02T04:19:00.940Z",
        "dateUpdated": "2026-07-06T20:56:18.351Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21384 (GCVE-0-2026-21384)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:55
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when updating prepared commands with invalid port indices based on user space input exceeds supported read client limits.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Netrani
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595
    Affected: QCA6595AU
    Affected: QCA6678AQ
    Affected: QCA6698AQ
    Affected: QCA6698AU
    Affected: QCA6797AQ
    Affected: QCM4490
    Affected: QCM5430
    Affected: QCM6490
    Affected: QCM8838
    Affected: QCS4490
    Affected: QCS8550
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD 8 Gen1 5G
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM7435
    Affected: Snapdragon 4 Gen 2 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 6 Gen 1 Mobile Platform
    Affected: Snapdragon 6 Gen 3 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 7 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 1 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21384",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:55:45.833104Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:55:58.107Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Netrani"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6678AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QCS8550"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD 8 Gen1 5G"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM7435"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when updating prepared commands with invalid port indices based on user space input exceeds supported read client limits."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:40.351Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21384",
        "datePublished": "2026-07-06T20:09:40.351Z",
        "dateReserved": "2025-12-17T04:35:45.743Z",
        "dateUpdated": "2026-07-06T20:55:58.107Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21383 (GCVE-0-2026-21383)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:55
    VLAI
    Title
    Reusing a Nonce, Key Pair in Encryption in HLOS
    Summary
    Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-323 - Reusing a Nonce, Key Pair in Encryption
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAM8397P
    Affected: QAM8797P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595AU
    Affected: QCA6696
    Affected: QCA6698AQ
    Affected: QCA6797AQ
    Affected: QCA8695AU
    Affected: QDU1000
    Affected: QDU1110
    Affected: QDU1210
    Affected: QDX1010
    Affected: QDX1011
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Dragonwing X100 Accelerator Card
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR1165P
    Affected: SAR2130P
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon AR1+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCN3950
    Affected: WCN7860
    Affected: WCN7861
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21383",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:55:25.178549Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:55:34.146Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAM8397P"
                },
                {
                  "status": "affected",
                  "version": "QAM8797P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6696"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA8695AU"
                },
                {
                  "status": "affected",
                  "version": "QDU1000"
                },
                {
                  "status": "affected",
                  "version": "QDU1110"
                },
                {
                  "status": "affected",
                  "version": "QDU1210"
                },
                {
                  "status": "affected",
                  "version": "QDX1010"
                },
                {
                  "status": "affected",
                  "version": "QDX1011"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Dragonwing X100 Accelerator Card"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR1165P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "NONE",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-323",
                  "description": "CWE-323: Reusing a Nonce, Key Pair in Encryption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:39.251Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Reusing a Nonce, Key Pair in Encryption in HLOS"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21383",
        "datePublished": "2026-07-06T20:09:39.251Z",
        "dateReserved": "2025-12-17T04:35:45.743Z",
        "dateUpdated": "2026-07-06T20:55:34.146Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21379 (GCVE-0-2026-21379)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:55
    VLAI
    Title
    Buffer Over-read in Windows Compute
    Summary
    Memory Corruption when allocating memory with sizes that exceed the maximum allowed value.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: AQT1000
    Affected: Cologne
    Affected: FastConnect 6200
    Affected: FastConnect 6700
    Affected: FastConnect 6800
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: IQX5121
    Affected: IQX7181
    Affected: QCA0000
    Affected: QCA6391
    Affected: QCA6420
    Affected: QCA6430
    Affected: QCM5430
    Affected: QCM6490
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: SC8380XP
    Affected: Snapdragon 7c+ Gen 3 Compute
    Affected: Snapdragon 8c Compute Platform "Poipu Lite"
    Affected: Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite"
    Affected: Snapdragon 8cx Compute Platform
    Affected: Snapdragon 8cx Compute Platform "Poipu Pro"
    Affected: Snapdragon 8cx Gen 2 5G Compute Platform
    Affected: Snapdragon 8cx Gen 2 5G Compute Platform "Poipu Pro"
    Affected: Snapdragon 8cx Gen 3 Compute Platform
    Affected: WCD9340
    Affected: WCD9341
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378C
    Affected: WCD9380
    Affected: WCD9385
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X2000077
    Affected: X2000086
    Affected: X2000090
    Affected: X2000092
    Affected: X2000094
    Affected: XG101002
    Affected: XG101032
    Affected: XG101039
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21379",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:55:02.410730Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:55:11.175Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Compute",
                "Snapdragon Industrial IOT"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "AQT1000"
                },
                {
                  "status": "affected",
                  "version": "Cologne"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6200"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6800"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "IQX5121"
                },
                {
                  "status": "affected",
                  "version": "IQX7181"
                },
                {
                  "status": "affected",
                  "version": "QCA0000"
                },
                {
                  "status": "affected",
                  "version": "QCA6391"
                },
                {
                  "status": "affected",
                  "version": "QCA6420"
                },
                {
                  "status": "affected",
                  "version": "QCA6430"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7c+ Gen 3 Compute"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8c Compute Platform \"Poipu Lite\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8c Compute Platform (SC8180XP-AD) \"Poipu Lite\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Compute Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Compute Platform \"Poipu Pro\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Gen 2 5G Compute Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Gen 2 5G Compute Platform \"Poipu Pro\""
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8cx Gen 3 Compute Platform"
                },
                {
                  "status": "affected",
                  "version": "WCD9340"
                },
                {
                  "status": "affected",
                  "version": "WCD9341"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378C"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X2000077"
                },
                {
                  "status": "affected",
                  "version": "X2000086"
                },
                {
                  "status": "affected",
                  "version": "X2000090"
                },
                {
                  "status": "affected",
                  "version": "X2000092"
                },
                {
                  "status": "affected",
                  "version": "X2000094"
                },
                {
                  "status": "affected",
                  "version": "XG101002"
                },
                {
                  "status": "affected",
                  "version": "XG101032"
                },
                {
                  "status": "affected",
                  "version": "XG101039"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when allocating memory with sizes that exceed the maximum allowed value."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-126",
                  "description": "CWE-126 Buffer Over-read",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:38.160Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Buffer Over-read in Windows Compute"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21379",
        "datePublished": "2026-07-06T20:09:38.160Z",
        "dateReserved": "2025-12-17T04:35:45.743Z",
        "dateUpdated": "2026-07-06T20:55:11.175Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21370 (GCVE-0-2026-21370)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:53
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: G3x Gen 2
    Affected: IQ9 Series Platform
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Netrani
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595
    Affected: QCA6595AU
    Affected: QCA6678AQ
    Affected: QCA6698AQ
    Affected: QCA6698AU
    Affected: QCA6797AQ
    Affected: QCM4490
    Affected: QCM8838
    Affected: QCS4490
    Affected: QCS8550
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD 8 Gen1 5G
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM7435
    Affected: SM7525
    Affected: SM7550
    Affected: SM7550P
    Affected: SM8550P
    Affected: Snapdragon 4 Gen 2 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 6 Gen 1 Mobile Platform
    Affected: Snapdragon 6 Gen 3 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 7 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9371
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9390
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN6650
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X1E80100
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21370",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:53:15.062848Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:53:26.103Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "G3x Gen 2"
                },
                {
                  "status": "affected",
                  "version": "IQ9 Series Platform"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Netrani"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6678AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QCS8550"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD 8 Gen1 5G"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM7435"
                },
                {
                  "status": "affected",
                  "version": "SM7525"
                },
                {
                  "status": "affected",
                  "version": "SM7550"
                },
                {
                  "status": "affected",
                  "version": "SM7550P"
                },
                {
                  "status": "affected",
                  "version": "SM8550P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9371"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9390"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN6650"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X1E80100"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:37.081Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21370",
        "datePublished": "2026-07-06T20:09:37.081Z",
        "dateReserved": "2025-12-17T04:35:45.742Z",
        "dateUpdated": "2026-07-06T20:53:26.103Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21369 (GCVE-0-2026-21369)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:54
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6200
    Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: G1 Gen 1
    Affected: G3x Gen 2
    Affected: IQ9 Series Platform
    Affected: Kalpeni
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAM8295P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6574AU
    Affected: QCA6595
    Affected: QCA6688AQ
    Affected: QCA6696
    Affected: QCA6698AQ
    Affected: QCA6797AQ
    Affected: QCA8695AU
    Affected: QCM2290
    Affected: QCM4325
    Affected: QCM4490
    Affected: QCM5430
    Affected: QCM6490
    Affected: QCM8838
    Affected: QCS2290
    Affected: QCS4290
    Affected: QCS4490
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA6155P
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8155P
    Affected: SA8195P
    Affected: SA8255P
    Affected: SA8295P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD662
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM6225P
    Affected: SM7525
    Affected: SM7550
    Affected: SM7550P
    Affected: SM8550P
    Affected: Snapdragon 4 Gen 1 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 480 5G Mobile Platform
    Affected: Snapdragon 480+ 5G Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 680 4G Mobile Platform
    Affected: Snapdragon 685 4G Mobile Platform
    Affected: Snapdragon 695 5G Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: Snapdragon Wear Elite platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: Themisto
    Affected: WCD9370
    Affected: WCD9371
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9390
    Affected: WCD9395
    Affected: WCN3910
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN6650
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X1E80100
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21369",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:54:37.570594Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:54:46.817Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile",
                "Snapdragon Wearables"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6200"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "G1 Gen 1"
                },
                {
                  "status": "affected",
                  "version": "G3x Gen 2"
                },
                {
                  "status": "affected",
                  "version": "IQ9 Series Platform"
                },
                {
                  "status": "affected",
                  "version": "Kalpeni"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAM8295P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6574AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6688AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6696"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA8695AU"
                },
                {
                  "status": "affected",
                  "version": "QCM2290"
                },
                {
                  "status": "affected",
                  "version": "QCM4325"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS2290"
                },
                {
                  "status": "affected",
                  "version": "QCS4290"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA6155P"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8155P"
                },
                {
                  "status": "affected",
                  "version": "SA8195P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8295P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD662"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM6225P"
                },
                {
                  "status": "affected",
                  "version": "SM7525"
                },
                {
                  "status": "affected",
                  "version": "SM7550"
                },
                {
                  "status": "affected",
                  "version": "SM7550P"
                },
                {
                  "status": "affected",
                  "version": "SM8550P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 480 5G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 480+ 5G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 680 4G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 685 4G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 695 5G Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon Wear Elite platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "Themisto"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9371"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9390"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3910"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN6650"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X1E80100"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:35.999Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21369",
        "datePublished": "2026-07-06T20:09:35.999Z",
        "dateReserved": "2025-12-17T04:35:45.742Z",
        "dateUpdated": "2026-07-06T20:54:46.817Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-21368 (GCVE-0-2026-21368)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:54
    VLAI
    Title
    Out-of-bounds Write in Camera Driver
    Summary
    Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: G3x Gen 2
    Affected: IQ9 Series Platform
    Affected: LeMans_AU_LGIT
    Affected: LeMansAU
    Affected: Netrani
    Affected: Pandeiro
    Affected: QAM8255P
    Affected: QAMSRV1H
    Affected: QAMSRV1M
    Affected: QCA6595
    Affected: QCA6595AU
    Affected: QCA6678AQ
    Affected: QCA6698AQ
    Affected: QCA6698AU
    Affected: QCA6797AQ
    Affected: QCM4490
    Affected: QCM8838
    Affected: QCS4490
    Affected: QCS8550
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SA7255P
    Affected: SA7775P
    Affected: SA8255P
    Affected: SA8620P
    Affected: SA8770P
    Affected: SA9000P
    Affected: SAR2130P
    Affected: SC8380XP
    Affected: SD 8 Gen1 5G
    Affected: SD865 5G
    Affected: SDR753
    Affected: SM7435
    Affected: SM7525
    Affected: SM7550
    Affected: SM7550P
    Affected: SM8550P
    Affected: Snapdragon 4 Gen 2 Mobile Platform
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 6 Gen 1 Mobile Platform
    Affected: Snapdragon 6 Gen 3 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 7 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Elite
    Affected: Snapdragon 8 Gen 1 Mobile Platform
    Affected: Snapdragon 8 Gen 2 Mobile Platform
    Affected: Snapdragon 8+ Gen 2 Mobile Platform
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SRV1H
    Affected: SRV1M
    Affected: SXR2230P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9371
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9390
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN6650
    Affected: WCN6755
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: X1E80100
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-21368",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:54:17.998443Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:54:28.033Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon Auto",
                "Snapdragon Compute",
                "Snapdragon Industrial IOT",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "G3x Gen 2"
                },
                {
                  "status": "affected",
                  "version": "IQ9 Series Platform"
                },
                {
                  "status": "affected",
                  "version": "LeMans_AU_LGIT"
                },
                {
                  "status": "affected",
                  "version": "LeMansAU"
                },
                {
                  "status": "affected",
                  "version": "Netrani"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QAM8255P"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1H"
                },
                {
                  "status": "affected",
                  "version": "QAMSRV1M"
                },
                {
                  "status": "affected",
                  "version": "QCA6595"
                },
                {
                  "status": "affected",
                  "version": "QCA6595AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6678AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AQ"
                },
                {
                  "status": "affected",
                  "version": "QCA6698AU"
                },
                {
                  "status": "affected",
                  "version": "QCA6797AQ"
                },
                {
                  "status": "affected",
                  "version": "QCM4490"
                },
                {
                  "status": "affected",
                  "version": "QCM8838"
                },
                {
                  "status": "affected",
                  "version": "QCS4490"
                },
                {
                  "status": "affected",
                  "version": "QCS8550"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SA7255P"
                },
                {
                  "status": "affected",
                  "version": "SA7775P"
                },
                {
                  "status": "affected",
                  "version": "SA8255P"
                },
                {
                  "status": "affected",
                  "version": "SA8620P"
                },
                {
                  "status": "affected",
                  "version": "SA8770P"
                },
                {
                  "status": "affected",
                  "version": "SA9000P"
                },
                {
                  "status": "affected",
                  "version": "SAR2130P"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD 8 Gen1 5G"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SDR753"
                },
                {
                  "status": "affected",
                  "version": "SM7435"
                },
                {
                  "status": "affected",
                  "version": "SM7525"
                },
                {
                  "status": "affected",
                  "version": "SM7550"
                },
                {
                  "status": "affected",
                  "version": "SM7550P"
                },
                {
                  "status": "affected",
                  "version": "SM8550P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 4 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 6 Gen 3 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 7 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 1 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8+ Gen 2 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SRV1H"
                },
                {
                  "status": "affected",
                  "version": "SRV1M"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9371"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9390"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN6650"
                },
                {
                  "status": "affected",
                  "version": "WCN6755"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "X1E80100"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787: Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:34.872Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Out-of-bounds Write in Camera Driver"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2026-21368",
        "datePublished": "2026-07-06T20:09:34.872Z",
        "dateReserved": "2025-12-17T04:35:45.742Z",
        "dateUpdated": "2026-07-06T20:54:28.033Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-59617 (GCVE-0-2025-59617)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:54
    VLAI
    Title
    Use After Free in Computer Vision
    Summary
    Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: Molokai
    Affected: Orne
    Affected: Pandeiro
    Affected: QCM5430
    Affected: QCM6490
    Affected: QMP1000
    Affected: QMP2001
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: SC8380XP
    Affected: SD865 5G
    Affected: SM6850
    Affected: SM8845P
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 8 Elite Gen 5
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN7760
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7880
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: WSA8850
    Affected: WSA8850W
    Affected: WSA8855C
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-59617",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:53:57.823352Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:54:07.672Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon MC",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "Molokai"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QMP1000"
                },
                {
                  "status": "affected",
                  "version": "QMP2001"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SM6850"
                },
                {
                  "status": "affected",
                  "version": "SM8845P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN7760"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7880"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "WSA8850"
                },
                {
                  "status": "affected",
                  "version": "WSA8850W"
                },
                {
                  "status": "affected",
                  "version": "WSA8855C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416 Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:33.799Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Use After Free in Computer Vision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2025-59617",
        "datePublished": "2026-07-06T20:09:33.799Z",
        "dateReserved": "2025-09-18T03:19:23.202Z",
        "dateUpdated": "2026-07-06T20:54:07.672Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-59616 (GCVE-0-2025-59616)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:53
    VLAI
    Title
    Use After Free in Computer Vision
    Summary
    Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: Molokai
    Affected: Orne
    Affected: Pandeiro
    Affected: QCM5430
    Affected: QCM6490
    Affected: QMP1000
    Affected: QMP2001
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: SC8380XP
    Affected: SD865 5G
    Affected: SM6850
    Affected: SM8845P
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 8 Elite Gen 5
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN7760
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7880
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: WSA8850
    Affected: WSA8850W
    Affected: WSA8855C
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-59616",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:53:38.832699Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:53:46.541Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon MC",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "Molokai"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QMP1000"
                },
                {
                  "status": "affected",
                  "version": "QMP2001"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SM6850"
                },
                {
                  "status": "affected",
                  "version": "SM8845P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN7760"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7880"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "WSA8850"
                },
                {
                  "status": "affected",
                  "version": "WSA8850W"
                },
                {
                  "status": "affected",
                  "version": "WSA8855C"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416 Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:32.700Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Use After Free in Computer Vision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2025-59616",
        "datePublished": "2026-07-06T20:09:32.700Z",
        "dateReserved": "2025-09-18T03:19:23.202Z",
        "dateUpdated": "2026-07-06T20:53:46.541Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-59615 (GCVE-0-2025-59615)

    Vulnerability from cvelistv5 – Published: 2026-07-06 20:09 – Updated: 2026-07-06 20:49
    VLAI
    Title
    Use After Free in Computer Vision
    Summary
    Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Qualcomm, Inc. Snapdragon Affected: FastConnect 6700
    Affected: FastConnect 6900
    Affected: FastConnect 7800
    Affected: Molokai
    Affected: Orne
    Affected: Pandeiro
    Affected: QCM5430
    Affected: QCM6490
    Affected: QLN1083BD
    Affected: QLN1086BD
    Affected: QMP1000
    Affected: QMP2001
    Affected: QPA1083BD
    Affected: QPA1086BD
    Affected: Qualcomm Video Collaboration VC3 Platform
    Affected: QXM1093
    Affected: QXM1094
    Affected: QXM1095
    Affected: QXM1096
    Affected: SC8380XP
    Affected: SD865 5G
    Affected: SM6850
    Affected: SM8845P
    Affected: Snapdragon 460 Mobile Platform
    Affected: Snapdragon 662 Mobile Platform
    Affected: Snapdragon 8 Elite Gen 5
    Affected: Snapdragon AR1 Gen 1 Platform
    Affected: Snapdragon XR2 5G Platform
    Affected: Snapdragon XR2+ Gen 1 Platform
    Affected: SXR2230P
    Affected: SXR2250P
    Affected: SXR2330P
    Affected: SXR2350P
    Affected: WCD9370
    Affected: WCD9375
    Affected: WCD9378
    Affected: WCD9380
    Affected: WCD9385
    Affected: WCD9395
    Affected: WCN3950
    Affected: WCN3988
    Affected: WCN6450
    Affected: WCN7760
    Affected: WCN7860
    Affected: WCN7861
    Affected: WCN7880
    Affected: WCN7881
    Affected: WSA8810
    Affected: WSA8815
    Affected: WSA8830
    Affected: WSA8832
    Affected: WSA8835
    Affected: WSA8840
    Affected: WSA8845
    Affected: WSA8845H
    Affected: WSA8850
    Affected: WSA8850W
    Affected: WSA8855C
    Affected: XRV7209
    Affected: XRV9209
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-59615",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-07-06T20:48:42.835447Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-07-06T20:49:30.808Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Snapdragon CCW",
                "Snapdragon Compute",
                "Snapdragon Consumer IOT",
                "Snapdragon MC",
                "Snapdragon Mobile"
              ],
              "product": "Snapdragon",
              "vendor": "Qualcomm, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "FastConnect 6700"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 6900"
                },
                {
                  "status": "affected",
                  "version": "FastConnect 7800"
                },
                {
                  "status": "affected",
                  "version": "Molokai"
                },
                {
                  "status": "affected",
                  "version": "Orne"
                },
                {
                  "status": "affected",
                  "version": "Pandeiro"
                },
                {
                  "status": "affected",
                  "version": "QCM5430"
                },
                {
                  "status": "affected",
                  "version": "QCM6490"
                },
                {
                  "status": "affected",
                  "version": "QLN1083BD"
                },
                {
                  "status": "affected",
                  "version": "QLN1086BD"
                },
                {
                  "status": "affected",
                  "version": "QMP1000"
                },
                {
                  "status": "affected",
                  "version": "QMP2001"
                },
                {
                  "status": "affected",
                  "version": "QPA1083BD"
                },
                {
                  "status": "affected",
                  "version": "QPA1086BD"
                },
                {
                  "status": "affected",
                  "version": "Qualcomm Video Collaboration VC3 Platform"
                },
                {
                  "status": "affected",
                  "version": "QXM1093"
                },
                {
                  "status": "affected",
                  "version": "QXM1094"
                },
                {
                  "status": "affected",
                  "version": "QXM1095"
                },
                {
                  "status": "affected",
                  "version": "QXM1096"
                },
                {
                  "status": "affected",
                  "version": "SC8380XP"
                },
                {
                  "status": "affected",
                  "version": "SD865 5G"
                },
                {
                  "status": "affected",
                  "version": "SM6850"
                },
                {
                  "status": "affected",
                  "version": "SM8845P"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 460 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 662 Mobile Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon 8 Elite Gen 5"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon AR1 Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2 5G Platform"
                },
                {
                  "status": "affected",
                  "version": "Snapdragon XR2+ Gen 1 Platform"
                },
                {
                  "status": "affected",
                  "version": "SXR2230P"
                },
                {
                  "status": "affected",
                  "version": "SXR2250P"
                },
                {
                  "status": "affected",
                  "version": "SXR2330P"
                },
                {
                  "status": "affected",
                  "version": "SXR2350P"
                },
                {
                  "status": "affected",
                  "version": "WCD9370"
                },
                {
                  "status": "affected",
                  "version": "WCD9375"
                },
                {
                  "status": "affected",
                  "version": "WCD9378"
                },
                {
                  "status": "affected",
                  "version": "WCD9380"
                },
                {
                  "status": "affected",
                  "version": "WCD9385"
                },
                {
                  "status": "affected",
                  "version": "WCD9395"
                },
                {
                  "status": "affected",
                  "version": "WCN3950"
                },
                {
                  "status": "affected",
                  "version": "WCN3988"
                },
                {
                  "status": "affected",
                  "version": "WCN6450"
                },
                {
                  "status": "affected",
                  "version": "WCN7760"
                },
                {
                  "status": "affected",
                  "version": "WCN7860"
                },
                {
                  "status": "affected",
                  "version": "WCN7861"
                },
                {
                  "status": "affected",
                  "version": "WCN7880"
                },
                {
                  "status": "affected",
                  "version": "WCN7881"
                },
                {
                  "status": "affected",
                  "version": "WSA8810"
                },
                {
                  "status": "affected",
                  "version": "WSA8815"
                },
                {
                  "status": "affected",
                  "version": "WSA8830"
                },
                {
                  "status": "affected",
                  "version": "WSA8832"
                },
                {
                  "status": "affected",
                  "version": "WSA8835"
                },
                {
                  "status": "affected",
                  "version": "WSA8840"
                },
                {
                  "status": "affected",
                  "version": "WSA8845"
                },
                {
                  "status": "affected",
                  "version": "WSA8845H"
                },
                {
                  "status": "affected",
                  "version": "WSA8850"
                },
                {
                  "status": "affected",
                  "version": "WSA8850W"
                },
                {
                  "status": "affected",
                  "version": "WSA8855C"
                },
                {
                  "status": "affected",
                  "version": "XRV7209"
                },
                {
                  "status": "affected",
                  "version": "XRV9209"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "LOW",
                "baseScore": 6.6,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-416",
                  "description": "CWE-416 Use After Free",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-07-06T20:09:31.634Z",
            "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            "shortName": "qualcomm"
          },
          "references": [
            {
              "url": "https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html"
            }
          ],
          "title": "Use After Free in Computer Vision"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
        "assignerShortName": "qualcomm",
        "cveId": "CVE-2025-59615",
        "datePublished": "2026-07-06T20:09:31.634Z",
        "dateReserved": "2025-09-18T03:19:23.202Z",
        "dateUpdated": "2026-07-06T20:49:30.808Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }