Primary

Context

Qualcomm TZ Firmware Untrusted Pointer Dereference Vulnerability Allowing Information Disclosure

Vulnerability

A vulnerability has been identified in the Trusted Zone (TZ) firmware of various Qualcomm chipsets, including those used in mobile platforms, automotive applications, and video collaboration devices. This vulnerability allows information disclosure by processing system calls with invalid parameters, which could be exploited to access sensitive data or internal communication APIs.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive system information, potentially allowing for further exploitation or manipulation of the device's functions.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and provided patch instructions. For the latest patch information, contact the device manufacturer.

Added: Dec 18, 2025, 6:38 AM

Updated: Dec 18, 2025, 6:38 AM

Affected Products

Qualcomm CSR8811

0 remedies

cpe:2.3:h:qualcomm:csr8811:*:*:*:*:*:*:*, +3 more

0 remedies

>= CSR8811 A12, <= CSR8811 A12
>= CSR8811, <= CSR8811

Qualcomm IPQ8070

0 remedies

cpe:2.3:h:qualcomm:ipq8070:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8070, <= IPQ8070

Qualcomm IPQ8070A

0 remedies

cpe:2.3:h:qualcomm:ipq8070a:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8070A, <= IPQ8070A

Qualcomm IPQ8071

0 remedies

cpe:2.3:h:qualcomm:ipq8071:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8071, <= IPQ8071

Qualcomm IPQ8071A

0 remedies

cpe:2.3:h:qualcomm:ipq8071a:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8071A, <= IPQ8071A

Qualcomm IPQ8072

0 remedies

cpe:2.3:h:qualcomm:ipq8072:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8072, <= IPQ8072

Qualcomm IPQ8074

0 remedies

cpe:2.3:h:qualcomm:ipq8074:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8074, <= IPQ8074

Qualcomm IPQ8076

0 remedies

cpe:2.3:h:qualcomm:ipq8076:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8076, <= IPQ8076

Qualcomm IPQ8076A

0 remedies

cpe:2.3:h:qualcomm:ipq8076a:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8076A, <= IPQ8076A

Qualcomm IPQ8078

0 remedies

cpe:2.3:h:qualcomm:ipq8078:*:*:*:*:*:*:*, +1 more

0 remedies

>= IPQ8078, <= IPQ8078

Qualcomm PMP8074

0 remedies

cpe:2.3:h:qualcomm:pmp8074:*:*:*:*:*:*:*, +1 more

0 remedies

>= PMP8074, <= PMP8074

Qualcomm QCA4024

0 remedies

cpe:2.3:h:qualcomm:qca4024:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA4024, <= QCA4024

Qualcomm QCA6428

0 remedies

cpe:2.3:h:qualcomm:qca6428:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6428, <= QCA6428

Qualcomm QCA6438

0 remedies

cpe:2.3:h:qualcomm:qca6438:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA6438, <= QCA6438

Qualcomm QCA8072

0 remedies

cpe:2.3:h:qualcomm:qca8072:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA8072, <= QCA8072

Qualcomm QCA8075

0 remedies

cpe:2.3:h:qualcomm:qca8075:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA8075, <= QCA8075

Qualcomm QCA8081

0 remedies

cpe:2.3:h:qualcomm:qca8081:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA8081, <= QCA8081

Qualcomm QCA9888

0 remedies

cpe:2.3:h:qualcomm:qca9888:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA9888, <= QCA9888

Qualcomm QCA9889

0 remedies

cpe:2.3:h:qualcomm:qca9889:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCA9889, <= QCA9889

Qualcomm QCN5022

0 remedies

cpe:2.3:h:qualcomm:qcn5022:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5022, <= QCN5022

Qualcomm QCN5024

0 remedies

cpe:2.3:h:qualcomm:qcn5024:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5024, <= QCN5024

Qualcomm QCN5052

0 remedies

cpe:2.3:h:qualcomm:qcn5052:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5052, <= QCN5052

Qualcomm QCN5054

0 remedies

cpe:2.3:h:qualcomm:qcn5054:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5054, <= QCN5054

Qualcomm QCN5122

0 remedies

cpe:2.3:h:qualcomm:qcn5122:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5122, <= QCN5122

Qualcomm QCN5124

0 remedies

cpe:2.3:h:qualcomm:qcn5124:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5124, <= QCN5124

Qualcomm QCN5152

0 remedies

cpe:2.3:h:qualcomm:qcn5152:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5152, <= QCN5152

Qualcomm QCN5164

0 remedies

cpe:2.3:h:qualcomm:qcn5164:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5164, <= QCN5164

Qualcomm QCN5550

0 remedies

cpe:2.3:h:qualcomm:qcn5550:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN5550, <= QCN5550

Qualcomm QCN6023

0 remedies

cpe:2.3:h:qualcomm:qcn6023:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN6023, <= QCN6023

Qualcomm QCN6024

0 remedies

cpe:2.3:h:qualcomm:qcn6024:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN6024, <= QCN6024

Qualcomm QCN9000

0 remedies

cpe:2.3:h:qualcomm:qcn9000:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN9000, <= QCN9000

Qualcomm QCN9022

0 remedies

cpe:2.3:h:qualcomm:qcn9022:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN9022, <= QCN9022

Qualcomm QCN9024

0 remedies

cpe:2.3:h:qualcomm:qcn9024:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN9024, <= QCN9024

Qualcomm QCN9070

0 remedies

cpe:2.3:h:qualcomm:qcn9070:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN9070, <= QCN9070

Qualcomm QCN9072

0 remedies

cpe:2.3:h:qualcomm:qcn9072:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN9072, <= QCN9072

Qualcomm QCN9074

0 remedies

cpe:2.3:h:qualcomm:qcn9074:*:*:*:*:*:*:*, +1 more

0 remedies

>= QCN9074, <= QCN9074

Qualcomm SDX55

0 remedies

cpe:2.3:h:qualcomm:sdpx55m:*:*:*:*:*:*:*, +4 more

0 remedies

>= SDX55, <= SDX55
>= SDX55M, <= SDX55M

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

2.5

exploitability

3.3

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.