Qualcomm AQT1000
Moderate fix1 remedy
cpe:2.3:o:qualcomm:aqt1000_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Primary
Context
Qualcomm Products Memory Corruption Vulnerability in Hypervisor Allowing Buffer Over-Read and Information Disclosure
Vulnerability
A memory corruption vulnerability has been identified in the hypervisor of various chipsets used in Qualcomm products. This issue arises when a PIL authenticated virtual machine (VM) image is loaded without maintaining proper cache coherency, leading to memory corruption. The vulnerability allows for a buffer over-read, causing information disclosure. It affects several different chipsets and platforms, including Snapdragon 8 Gen 1 and 8 Gen 2 mobile platforms, automotive software platforms based on QNX, and various other chipsets used in Qualcomm's video collaboration platforms, among others.
Impact
Exploitation of this vulnerability leads to memory corruption, which can cause arbitrary code execution or create a denial-of-service condition by crashing the system or application.
Remediation
Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. Instructions for applying the patch can be found in the Qualcomm September 2025 Security Bulletin.
Added: Sep 24, 2025, 8:21 PM
Updated: Sep 24, 2025, 8:21 PM
Affected Products
Qualcomm AR8035
Moderate fix1 remedy
cpe:2.3:o:qualcomm:ar8035_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 6200
Moderate fix1 remedy
cpe:2.3:h:qualcomm:fastconnect_6200:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 6700
Moderate fix1 remedy
cpe:2.3:h:qualcomm:fastconnect_6700:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 6800
Moderate fix1 remedy
cpe:2.3:h:qualcomm:fastconnect_6800:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 6900
Moderate fix1 remedy
cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm FastConnect 7800
Moderate fix1 remedy
cpe:2.3:o:qualcomm:fastconnect_7800_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8255P
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qam8255p_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8295P
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qam8295p:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8620P
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qam8620p:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8650P
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qam8650p_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAM8775P
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qam8775p_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAMSRV1H
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qamsrv1h:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QAMSRV1M
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qamsrv1m_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6174A
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6174a_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6310
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6310_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6335
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6335:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6391
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6391_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6420
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6420:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6421
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6421:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6426
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6426_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6430
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6430_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6431
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6431:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6436
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6436_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6564
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6564_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6564A
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6564a:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6564AU
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6564au:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6574
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6574_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6574A
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6574a:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6574AU
0 remedies
cpe:2.3:o:qualcomm:qca6574au_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
Qualcomm QCA6584AU
0 remedies
cpe:2.3:o:qualcomm:qca6584au_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
Qualcomm QCA6595
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6595_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6595AU
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6595au_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6678AQ
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6678aq:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6688AQ
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qca6688aq_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6696
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6696:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6698AQ
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6698aq:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCA6797AQ
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qca6797aq:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM2150
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcm2150_firmware:*:*:*:*:*:*:*
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM2290
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcm2290_firmware:*:*:*:*:*:*:*, +2 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM4290
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcm4290:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM4325
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcm4325_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM4490
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcm4490:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM5430
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcm5430:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM6125
0 remedies
cpe:2.3:h:qualcomm:qcm6125:*:*:*:*:*:*:*, +1 more
0 remedies
Qualcomm QCM6490
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcm6490:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCM8550
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcm8550_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCN9274
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcn9274_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS2290
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs2290:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS410
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs410:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS4290
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs4290:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS4490
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs4490:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS5430
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcs5430_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS610
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs610:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS6125
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qcs6125_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS615
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs615:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS6490
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs6490:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS8300
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs8300:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS8550
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs8550:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QCS9100
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qcs9100:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm QMP1000
Moderate fix1 remedy
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm 205 Mobile Platform
Moderate fix1 remedy
cpe:2.3:h:qualcomm:qualcomm_205_mobile_platform:*:*:*:*:*:*:*, +3 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm 215 Mobile Platform
Moderate fix1 remedy
cpe:2.3:o:qualcomm:qualcomm_215_mobile_platform_firmware:*:*:*:*:*:*:*, +2 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 210 Processor
Moderate fix1 remedy
cpe:2.3:o:qualcomm:snapdragon_210_processor_firmware:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 212 Mobile Platform
Moderate fix1 remedy
cpe:2.3:h:qualcomm:snapdragon_212_mobile_platform:*:*:*:*:*:*:*, +3 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 4 Gen 1 Mobile Platform
Moderate fix1 remedy
cpe:2.3:h:qualcomm:snapdragon_4_gen_1_mobile_platform:*:*:*:*:*:*:*, +3 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
Qualcomm Snapdragon 4 Gen 2 Mobile Platform
Moderate fix1 remedy
cpe:2.3:h:qualcomm:snapdragon_4_gen_2_mobile_platform:*:*:*:*:*:*:*, +19 more
Moderate fix1 remedy
- >= 12.1X46, < 12.1X46-D81
References
https://docs.qualcomm.com/product/publicresources/securitybulletin/september-2025-bulletin.html
AdvisoryBundleRemedyVendor
Showing 1-1 of 1 references
Vulnerability Rating
Custom Algorithm
spread
8.1impact
0.6exploitability
3.5remediation
7.7relevance
0.5threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
Vulnerability Rating
Custom Algorithm
spread
8.1impact
0.6exploitability
3.5remediation
7.7relevance
0.5threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.