Qualcomm FastConnect 6900
Moderate fix1 remedy
cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 1.0, < 1.0.0.0
Qualcomm Windows WLAN Host Buffer Copy Without Checking Size of Input Vulnerability Allowing Memory Corruption
Vulnerability
A buffer copy vulnerability has been identified in the Windows WLAN Host component of certain Qualcomm chipsets. This vulnerability, classified as a 'classic buffer overflow', arises from memory corruption while processing IOCTL calls invoked from user space. The issue specifically relates to the verification of non-extension FIPS encryption and decryption functionality, creating potential for memory corruption.
Impact
Exploitation of this vulnerability leads to memory corruption, which can commonly be exploited to execute arbitrary code or cause a denial-of-service condition.
Remediation
Qualcomm has notified customers about this vulnerability and provided patch instructions. The patch can be applied by following the instructions available in the January 2025 Qualcomm Security Bulletin.
Added: Sep 1, 2025, 7:22 PM
Updated: Sep 1, 2025, 7:22 PM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
2.5exploitability
3.3remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.