Primary

Context

Qualcomm Camera Driver Use-After-Free Vulnerability Allowing Memory Corruption

Vulnerability

A use-after-free vulnerability has been identified in the Qualcomm Camera Driver, affecting various chipsets. This vulnerability arises from concurrent buffer access, where the reference count is not properly managed, leading to memory corruption. The issue can be exploited by manipulating the reference count during simultaneous access to buffers, causing the system to reference freed memory, which can be exploited to execute arbitrary code or cause a denial-of-service condition.

Impact

Exploitation of this vulnerability can lead to memory corruption, with potential consequences such as arbitrary code execution or causing the device to become unresponsive.

Remediation

Qualcomm has released patches for this vulnerability. Instructions for applying the patch can be found in the Qualcomm May 2025 Security Bulletin.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Camera Driver Use-After-Free Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating