Primary

Context

Qualcomm Windows WLAN Host Memory Corruption Vulnerability in Power-Save State

Vulnerability

A memory corruption vulnerability has been identified in the Windows WLAN Host component of Qualcomm chipsets. This issue arises while processing IOCTL commands when the device is in a power-save state, potentially leading to unauthorized memory access or manipulation.

Impact

Exploitation of this vulnerability causes memory corruption, which can lead to undefined behavior in the application, such as crashing or executing arbitrary code.

Remediation

Qualcomm has notified device manufacturers about this vulnerability. Instructions for applying the patch can be found in the Qualcomm May 2026 Security Bulletin.

Added: May 4, 2026, 5:35 PM

Updated: May 4, 2026, 5:35 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.9

remediation

8.3

relevance

7.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.9

remediation

8.3

relevance

7.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Qualcomm Windows WLAN Host Memory Corruption Vulnerability in Power-Save State

Vulnerability

Impact

Remediation

Affected Products

Qualcomm SC8380XP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating