Primary

Context

Qualcomm Automotive Chipsets Memory Corruption Vulnerability Allowing for Potential Code Execution

Vulnerability

A memory corruption vulnerability has been identified in various chipsets used in automotive applications. This issue arises from improper calculations of offsets based on partition start points, leading to memory corruption. The vulnerability is present in multiple chipsets, including QAM8255P, QAM8295P, QAM8620P, QAM8650P, QAM8775P, QAMSRV1H, QAMSRV1M, QCA6574AU, QCA6595, QCA6595AU, QCA6688AQ, QCA6696, QCA6698AQ, QCA6797AQ, QCA8695AU, SA6145P, SA6150P, SA6155P, SA7255P, SA7775P, SA8145P, SA8150P, SA8155P, SA8195P, SA8255P, SA8295P, SA8540P, SA8620P, SA8650P, SA8770P, SA8775P, SA9000P, SRV1H, SRV1L, SRV1M.

Impact

Exploitation of this vulnerability leads to memory corruption, which can potentially be leveraged for arbitrary code execution.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and recommended that they deploy patches. Instructions for applying the patch can be found in the Qualcomm February 2026 Security Bulletin.

Added: Feb 2, 2026, 4:32 PM

Updated: Feb 2, 2026, 4:32 PM

Affected Products

Qualcomm QAM8255P

0 remedies

cpe:2.3:h:qualcomm:qam8255p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QAM8295P

0 remedies

cpe:2.3:h:qualcomm:qam8295p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QAM8620P

0 remedies

cpe:2.3:h:qualcomm:qam8620p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QAM8650P

0 remedies

cpe:2.3:h:qualcomm:qam8650p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QAM8775P

0 remedies

cpe:2.3:h:qualcomm:qam8775p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QAMSRV1H

0 remedies

cpe:2.3:h:qualcomm:qamsrv1h:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QAMSRV1M

0 remedies

cpe:2.3:h:qualcomm:qamsrv1m:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6574AU

0 remedies

cpe:2.3:h:qualcomm:qca6564au:*:*:*:*:*:*:*, +9 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6595

0 remedies

cpe:2.3:h:qualcomm:qca6595:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6595AU

0 remedies

cpe:2.3:h:qualcomm:qca6595au:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6688AQ

0 remedies

cpe:2.3:h:qualcomm:qca6688aq:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6696

0 remedies

cpe:2.3:h:qualcomm:qca6696:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6698AQ

0 remedies

cpe:2.3:h:qualcomm:qca6698aq:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA6797AQ

0 remedies

cpe:2.3:h:qualcomm:qca6797aq:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm QCA8695AU

0 remedies

<= 1.0.0.0

Qualcomm SA6145P

0 remedies

cpe:2.3:h:qualcomm:sa6145p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA6150P

0 remedies

cpe:2.3:h:qualcomm:sa6150p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA6155P

0 remedies

cpe:2.3:h:qualcomm:sa6155p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA7255P

0 remedies

cpe:2.3:h:qualcomm:sa7255p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA7775P

0 remedies

cpe:2.3:h:qualcomm:sa7775p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8145P

0 remedies

cpe:2.3:h:qualcomm:sa8145p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8150P

0 remedies

cpe:2.3:h:qualcomm:sa8150p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8155P

0 remedies

cpe:2.3:h:qualcomm:sa8155p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8195P

0 remedies

cpe:2.3:h:qualcomm:sa8195p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8255P

0 remedies

cpe:2.3:h:qualcomm:sa8255p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8295P

0 remedies

cpe:2.3:h:qualcomm:sa8295p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8540P

0 remedies

cpe:2.3:h:qualcomm:sa8540p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8620P

0 remedies

cpe:2.3:h:qualcomm:sa8620p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8650P

0 remedies

cpe:2.3:h:qualcomm:sa8650p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8770P

0 remedies

cpe:2.3:h:qualcomm:sa8770p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA8775P

0 remedies

cpe:2.3:h:qualcomm:sa8775p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SA9000P

0 remedies

cpe:2.3:h:qualcomm:sa9000p:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SRV1H

0 remedies

cpe:2.3:h:qualcomm:srv1h:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SRV1L

0 remedies

cpe:2.3:h:qualcomm:srv1l:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Qualcomm SRV1M

0 remedies

cpe:2.3:h:qualcomm:srv1m:*:*:*:*:*:*:*, +1 more

0 remedies

<= 1.0.0.0

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

5.0

exploitability

3.5

remediation

0.0

relevance

2.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

5.0

exploitability

3.5

remediation

0.0

relevance

2.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.