Primary

Context

Qualcomm Automotive Linux OS Use-After-Free Vulnerability Allowing Memory Corruption

Vulnerability

A use-after-free vulnerability has been identified in Qualcomm's Automotive Linux OS, specifically in the handling of IOCTL calls to set mode. This memory corruption issue could potentially be exploited to disrupt normal operation or cause unintended behavior in the system.

Impact

Exploitation of this vulnerability leads to memory corruption, which can be used to manipulate program execution or cause a crash.

Remediation

Qualcomm has released patches for this vulnerability. Instructions for applying the patch can be found in the Qualcomm December 2025 Security Bulletin.

Added: Dec 18, 2025, 6:48 AM

Updated: Dec 18, 2025, 6:48 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

3.3

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Automotive Linux OS Use-After-Free Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating