Primary

Context

Qualcomm Automotive Software Platform Memory Corruption Vulnerability Allowing Subsystem Crashes

Vulnerability

A memory corruption vulnerability has been identified in the Qualcomm Automotive Software platform based on QNX. This issue arises from improper validation of array indices, allowing out-of-range identifiers to trigger subsystem crashes. The vulnerability affects several chipsets within the automotive platform.

Impact

Exploitation of this vulnerability leads to memory corruption, causing crashes in the affected subsystem.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and recommended that they deploy patches on released devices as soon as possible. For information on the patching status of specific devices, contact the device manufacturer.

Added: Nov 4, 2025, 4:38 AM

Updated: Nov 4, 2025, 4:38 AM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

0.6

exploitability

3.3

remediation

8.3

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

0.6

exploitability

3.3

remediation

8.3

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Automotive Software Platform Memory Corruption Vulnerability Allowing Subsystem Crashes

Vulnerability

Impact

Remediation

Affected Products

Qualcomm Automotive Software platform based on QNX

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating