Primary

Context

Qualcomm WinBlast Driver Out-of-Bounds Write Vulnerability Allowing Memory Corruption

Vulnerability

A memory corruption vulnerability has been identified in the WinBlast driver of Qualcomm chipsets. This issue arises from an out-of-bounds write while accessing a buffer during IOCTL processing, which could potentially be exploited to cause memory corruption.

Impact

Exploitation of this vulnerability leads to memory corruption, which can commonly be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the system or application.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and recommended that they deploy patches on released devices as soon as possible. For information on the patching status of released devices, contact the device manufacturer.

Added: Nov 4, 2025, 4:35 AM

Updated: Nov 4, 2025, 4:35 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm WinBlast Driver Out-of-Bounds Write Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating