Primary

Context

Qualcomm Buffer Over-read Vulnerability in Display Processing Escape Codes

Vulnerability

A memory corruption vulnerability has been identified in Qualcomm's display component. This issue arises when the DisplayId is supplied with a large unsigned value, leading to improper handling of escape codes. The vulnerability is present in various chipsets, including those used in mobile platforms and automotive applications.

Impact

Exploitation of this vulnerability causes memory corruption, which can lead to undefined behavior such as arbitrary code execution or application crashes.

Remediation

Qualcomm has released patches for this vulnerability. Instructions for applying the patch can be found in the Qualcomm May 2025 Security Bulletin.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Buffer Over-read Vulnerability in Display Processing Escape Codes

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating