Primary

Context

Qualcomm Automotive Vehicle Networks Memory Corruption Vulnerability

Vulnerability

A memory corruption vulnerability has been identified in Qualcomm's Automotive Vehicle Networks. This issue arises from a time-of-check time-of-use (TOCTOU) race condition, which may lead to improper handling of messages during allocation, potentially allowing for memory corruption.

Impact

Exploitation of this vulnerability can lead to memory corruption, which may be exploited to cause a use-after-free condition, potentially allowing for arbitrary code execution or other malicious actions.

Remediation

Qualcomm has notified customers about this vulnerability and is actively sharing patches. Instructions for applying the patch can be found in the Qualcomm March 2025 Security Bulletin.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Affected Products

Qualcomm QAM8255P

0 remedies

cpe:2.3:h:qualcomm:qam8255p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAM8295P

0 remedies

cpe:2.3:h:qualcomm:qam8295p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAM8620P

0 remedies

cpe:2.3:h:qualcomm:qam8620p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAM8650P

0 remedies

cpe:2.3:h:qualcomm:qam8650p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAM8775P

0 remedies

cpe:2.3:h:qualcomm:qam8775p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAMSRV1H

0 remedies

cpe:2.3:h:qualcomm:qamsrv1h:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QAMSRV1M

0 remedies

cpe:2.3:h:qualcomm:qamsrv1m:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6574A

0 remedies

cpe:2.3:h:qualcomm:qca6574:*:*:*:*:*:*:*, +3 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6574AU

0 remedies

cpe:2.3:h:qualcomm:qca6574au:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6595

0 remedies

cpe:2.3:h:qualcomm:qca6595:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6595AU

0 remedies

cpe:2.3:h:qualcomm:qca6595au:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6688AQ

0 remedies

cpe:2.3:h:qualcomm:qca6688aq:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6696

0 remedies

cpe:2.3:h:qualcomm:qca6696:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm QCA6698AQ

0 remedies

cpe:2.3:h:qualcomm:qca6698aq:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA6145P

0 remedies

cpe:2.3:h:qualcomm:sa6145p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA6150P

0 remedies

cpe:2.3:h:qualcomm:sa6150p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA6155

0 remedies

cpe:2.3:h:qualcomm:sa6155:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA6155P

0 remedies

cpe:2.3:h:qualcomm:sa6155p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8255P

0 remedies

cpe:2.3:h:qualcomm:sa8255p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8295P

0 remedies

cpe:2.3:h:qualcomm:sa8295p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8540P

0 remedies

cpe:2.3:h:qualcomm:sa8540p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8620P

0 remedies

cpe:2.3:h:qualcomm:sa8620p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8650P

0 remedies

cpe:2.3:h:qualcomm:sa8650p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8770P

0 remedies

cpe:2.3:h:qualcomm:sa8770p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA8775P

0 remedies

cpe:2.3:h:qualcomm:sa8775p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SA9000P

0 remedies

cpe:2.3:h:qualcomm:sa9000p:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SRV1H

0 remedies

cpe:2.3:h:qualcomm:srv1h:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SRV1L

0 remedies

cpe:2.3:h:qualcomm:srv1l:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Qualcomm SRV1M

0 remedies

cpe:2.3:h:qualcomm:srv1m:*:*:*:*:*:*:*, +1 more

0 remedies

>= 12.1X46, < 12.1X46-D81

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

3.1

exploitability

3.5

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

3.1

exploitability

3.5

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Automotive Vehicle Networks Memory Corruption Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Qualcomm QAM8255P

Qualcomm QAM8295P

Qualcomm QAM8620P

Qualcomm QAM8650P

Qualcomm QAM8775P

Qualcomm QAMSRV1H

Qualcomm QAMSRV1M

Qualcomm QCA6574A

Qualcomm QCA6574AU

Qualcomm QCA6595

Qualcomm QCA6595AU

Qualcomm QCA6688AQ

Qualcomm QCA6696

Qualcomm QCA6698AQ

Qualcomm SA6145P

Qualcomm SA6150P

Qualcomm SA6155

Qualcomm SA6155P

Qualcomm SA8255P

Qualcomm SA8295P

Qualcomm SA8540P

Qualcomm SA8620P

Qualcomm SA8650P

Qualcomm SA8770P

Qualcomm SA8775P

Qualcomm SA9000P

Qualcomm SRV1H

Qualcomm SRV1L

Qualcomm SRV1M

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating