Primary

Context

Qualcomm Automotive Software Platform Memory Corruption Vulnerability

Vulnerability

Patched

A memory corruption vulnerability has been identified in the Qualcomm Automotive Software platform based on QNX. This issue arises from improper input validation while processing data sent by the Front End (FE) driver, leading to memory corruption.

Impact

Exploitation of this vulnerability causes memory corruption, which can potentially be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the system.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. For information on the patching status of released devices, contact the device manufacturer.

Added: Sep 24, 2025, 4:56 PM

Updated: Sep 24, 2025, 7:47 PM

Affected Products

Qualcomm QAM8255P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qam8255p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QAM8295P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qam8295p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QAM8620P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qam8620p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QAM8650P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qam8650p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QAM8775P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qam8775p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6574AU

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6574:*:*:*:*:*:*:*, +5 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6595

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6564au:*:*:*:*:*:*:*, +3 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6595AU

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6595:*:*:*:*:*:*:*, +3 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6688AQ

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6688aq:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6696

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6678aq:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6698AQ

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6696:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6797AQ

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6698aq:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm SA6155P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6797aq:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm SA7255P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sa6145p:*:*:*:*:*:*:*, +9 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm SA7775P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sa7255p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm SA8155P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sa7775p:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm SA8195P

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sa8145p:*:*:*:*:*:*:*, +27 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

1.3

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

1.3

exploitability

3.5

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Automotive Software Platform Memory Corruption Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Qualcomm QAM8255P

Qualcomm QAM8295P

Qualcomm QAM8620P

Qualcomm QAM8650P

Qualcomm QAM8775P

Qualcomm QCA6574AU

Qualcomm QCA6595

Qualcomm QCA6595AU

Qualcomm QCA6688AQ

Qualcomm QCA6696

Qualcomm QCA6698AQ

Qualcomm QCA6797AQ

Qualcomm SA6155P

Qualcomm SA7255P

Qualcomm SA7775P

Qualcomm SA8155P

Qualcomm SA8195P

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating