Primary

Context

Qualcomm Products Double Free Vulnerability in Video Component Allowing Memory Corruption

Vulnerability

Patched

A memory corruption vulnerability has been identified in various chipsets used in Qualcomm products, including those in the Snapdragon series, automotive platforms, and video collaboration platforms. The issue arises from a double free condition, where multiple threads concurrently attempt to modify the timestamp store, leading to memory corruption.

Impact

Exploitation of this vulnerability causes memory corruption, which can lead to undefined behavior such as arbitrary code execution or application crashes.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. Instructions for applying the patch can be found in the Qualcomm September 2025 Security Bulletin.

Added: Sep 24, 2025, 4:51 PM

Updated: Sep 24, 2025, 7:43 PM

Affected Products

Qualcomm AQT1000

Moderate fix1 remedy

cpe:2.3:h:qualcomm:aqt1000:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm FastConnect 6200

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_6200:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm FastConnect 6700

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_6700:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm FastConnect 6800

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_6800:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm FastConnect 6900

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm FastConnect 7800

Moderate fix1 remedy

cpe:2.3:h:qualcomm:fastconnect_7800:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6391

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6391:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6420

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6420:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm QCA6430

Moderate fix1 remedy

cpe:2.3:h:qualcomm:qca6430:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm SC8380XP

Moderate fix1 remedy

cpe:2.3:h:qualcomm:sc8380xp:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm Snapdragon 7c+ Gen 3 Compute

Moderate fix1 remedy

cpe:2.3:h:qualcomm:snapdragon_7c+_gen_3:*:*:*:*:*:*:*, +6 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm Snapdragon 8c Compute Platform

Moderate fix1 remedy

cpe:2.3:h:qualcomm:snapdragon_8c_compute_platform:*:*:*:*:*:*:*, +2 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm Snapdragon 8cx Compute Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_8cx_compute_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm Snapdragon 8cx Gen 3 Compute Platform

0 remedies

cpe:2.3:h:qualcomm:snapdragon_8cx_gen_3_compute_platform:*:*:*:*:*:*:*, +1 more

0 remedies

Qualcomm WCD9340

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcd9340:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WCD9341

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcd9341:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WCD9380

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcd9380:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WCD9385

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wcd9385:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8810

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8810:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8815

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8815:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8830

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8830:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8835

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8835:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8840

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8840:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8845

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8845:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Qualcomm WSA8845H

Moderate fix1 remedy

cpe:2.3:h:qualcomm:wsa8845h:*:*:*:*:*:*:*, +1 more

Moderate fix1 remedy

>= 1.0, < 1.0.0.1

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

2.9

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

2.9

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Products Double Free Vulnerability in Video Component Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

Qualcomm AQT1000

Qualcomm FastConnect 6200

Qualcomm FastConnect 6700

Qualcomm FastConnect 6800

Qualcomm FastConnect 6900

Qualcomm FastConnect 7800

Qualcomm QCA6391

Qualcomm QCA6420

Qualcomm QCA6430

Qualcomm SC8380XP

Qualcomm Snapdragon 7c+ Gen 3 Compute

Qualcomm Snapdragon 8c Compute Platform

Qualcomm Snapdragon 8cx Compute Platform

Qualcomm Snapdragon 8cx Gen 3 Compute Platform

Qualcomm WCD9340

Qualcomm WCD9341

Qualcomm WCD9380

Qualcomm WCD9385

Qualcomm WSA8810

Qualcomm WSA8815

Qualcomm WSA8830

Qualcomm WSA8835

Qualcomm WSA8840

Qualcomm WSA8845

Qualcomm WSA8845H

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating