Primary

Context

Qualcomm Products Memory Corruption Vulnerability During Private Key Encryption

Vulnerability

A memory corruption vulnerability has been identified in various chipsets of Qualcomm products, including those in the Snapdragon series, automotive platforms, and wireless communication components. This vulnerability occurs in a trusted application while performing private key encryption, potentially leading to unauthorized access or manipulation of sensitive data.

Impact

Exploitation of this vulnerability causes memory corruption, which can lead to arbitrary code execution or the introduction of a denial-of-service condition.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. Instructions for applying the patch can be found in the Qualcomm September 2025 Security Bulletin.

Added: Sep 24, 2025, 9:24 PM

Updated: Sep 24, 2025, 9:24 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Products Memory Corruption Vulnerability During Private Key Encryption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating