Primary

Context

Qualcomm Snapdragon Chipsets Memory Corruption Vulnerability Due to Race Condition

Vulnerability

A memory corruption vulnerability has been identified in various chipsets of Qualcomm Snapdragon processors. This issue arises during concurrent execution of the SSR (System Status Report) process, creating a race condition that affects the global maps list. The vulnerability allows for use-after-free conditions, which can be exploited to cause memory corruption.

Impact

Exploitation of this vulnerability leads to memory corruption, which can cause use-after-free conditions. Such conditions can be exploited to manipulate memory in a way that could potentially execute arbitrary code or cause a denial-of-service condition by crashing the system.

Remediation

Qualcomm has released patches for this vulnerability. Instructions for applying the patch can be found in the Qualcomm May 2025 Security Bulletin.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Affected Products

Qualcomm FastConnect 6900

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm FastConnect 7800

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_7800:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6174A

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6174a:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm SDM429W

Moderate fix1 remedy

cpe:2.3:o:qualcomm:sdm429w_firmware:*:*:*:*:*:*:*

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm Snapdragon 429 Mobile Platform

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sdm429w:*:*:*:*:*:*:*, +4 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm Snapdragon 8 Gen 1 Mobile Platform

Moderate fix1 remedy

cpe:2.3:h:qualcomm:snapdragon_8_gen_1_mobile_platform:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm Snapdragon 888 5G Mobile Platform

Moderate fix1 remedy

cpe:2.3:h:qualcomm:snapdragon_888_5g_mobile_platform:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm Snapdragon 888+ 5G Mobile Platform

Moderate fix1 remedy

cpe:2.3:h:qualcomm:snapdragon_888_5g_mobile:*:*:*:*:*:*:*, +5 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm SW5100

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sw5100:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm SW5100P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sw5100p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm SXR2230P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sxr2230p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm SXR2250P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sxr2250p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WCD9380

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcd9380:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WCD9385

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcd9385:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WCN3620

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcn3620:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WCN3660B

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcn3660:*:*:*:*:*:*:*, +4 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WCN3980

Moderate fix1 remedy

cpe:2.3:o:qualcomm:wcn3980_firmware:*:*:*:*:*:*:*

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WCN3988

Moderate fix1 remedy

cpe:2.3:o:qualcomm:wcn3988_firmware:*:*:*:*:*:*:*

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WSA8830

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8830:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WSA8832

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8832:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Qualcomm WSA8835

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8835:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 12.1X46, < 12.1X46-D81

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

2.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

2.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Snapdragon Chipsets Memory Corruption Vulnerability Due to Race Condition

Vulnerability

Impact

Remediation

Affected Products

Qualcomm FastConnect 6900

Qualcomm FastConnect 7800

Qualcomm QCA6174A

Qualcomm SDM429W

Qualcomm Snapdragon 429 Mobile Platform

Qualcomm Snapdragon 8 Gen 1 Mobile Platform

Qualcomm Snapdragon 888 5G Mobile Platform

Qualcomm Snapdragon 888+ 5G Mobile Platform

Qualcomm SW5100

Qualcomm SW5100P

Qualcomm SXR2230P

Qualcomm SXR2250P

Qualcomm WCD9380

Qualcomm WCD9385

Qualcomm WCN3620

Qualcomm WCN3660B

Qualcomm WCN3980

Qualcomm WCN3988

Qualcomm WSA8830

Qualcomm WSA8832

Qualcomm WSA8835

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating