Qualcomm FastConnect 6900
Moderate fix1 remedy
cpe:2.3:h:qualcomm:fastconnect_6900:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= 6900, < 6900-1.0.0
Qualcomm Products Buffer Over-read Vulnerability in DSP Service via MCDM IOCTL Processing
Vulnerability
Patched
A memory corruption vulnerability has been identified in various chipsets of Qualcomm products. This issue arises when the system dereferences an invalid userspace address in a user buffer, leading to improper memory access during the processing of MCDM IOCTL commands. The vulnerability allows for memory corruption, which could potentially be exploited to cause unintended behavior in the application or system.
Impact
Exploitation of this vulnerability leads to memory corruption, allowing for potential arbitrary code execution or causing a system crash.
Remediation
Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. For information on the patching status of released devices, contact the device manufacturer.
Added: Nov 4, 2025, 4:34 AM
Updated: Nov 4, 2025, 4:34 AM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
0.6exploitability
3.3remediation
7.7relevance
0.9threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.