Primary

Context

Qualcomm Camera Sensor Driver Buffer Over-read Vulnerability Allowing Memory Corruption

Vulnerability

A buffer over-read vulnerability has been identified in a camera sensor driver for Qualcomm chipsets. This vulnerability arises from memory corruption when the driver accesses an output buffer without properly validating its size during IOCTL processing. The issue affects several chipsets and could lead to memory corruption, potentially allowing for further exploitation.

Impact

Exploitation of this vulnerability causes memory corruption, which can lead to undefined behavior in the application, including potential arbitrary code execution or causing a device to crash.

Remediation

Qualcomm has notified device manufacturers about this vulnerability and is actively sharing patches. For information on the patching status of released devices, contact the device manufacturer.

Added: Apr 6, 2026, 4:51 PM

Updated: Apr 6, 2026, 4:51 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.4

exploitability

3.3

remediation

0.0

relevance

5.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.4

exploitability

3.3

remediation

0.0

relevance

5.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Camera Sensor Driver Buffer Over-read Vulnerability Allowing Memory Corruption

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating