Skip to main content

Qualcomm Snapdragon CVE-2025-59615

| EUVDEUVD-2025-210436 HIGH
Use After Free (CWE-416)
2026-07-06 qualcomm GHSA-8jv7-234c-5cgq
7.8
CVSS 3.1 · NVD
Share

Severity by source

Vendor (qualcomm) PRIMARY
MEDIUM
qualitative
NVD
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vuln.today AI
7.0 HIGH

Local low-privilege app (AV:L/PR:L); AC:H because triggering the use-after-free requires winning a synchronization race; kernel-level corruption yields full C/I/A impact.

3.1 AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
4.0 AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Primary rating from Vendor (qualcomm).

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

6
Analysis Updated
Jul 07, 2026 - 17:16 vuln.today
v3 (cvss_changed)
Analysis Updated
Jul 07, 2026 - 17:16 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Jul 07, 2026 - 17:07 vuln.today
cvss_changed
Severity Changed
Jul 07, 2026 - 17:07 NVD
MEDIUM HIGH
CVSS changed
Jul 07, 2026 - 17:07 NVD
6.6 (MEDIUM) 7.8 (HIGH)
Analysis Generated
Jul 06, 2026 - 21:25 vuln.today

DescriptionNVD

Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization.

AnalysisAI

Local privilege escalation via memory corruption affects a broad range of Qualcomm Snapdragon chipsets, where a use-after-free condition in the device driver's input/output control (ioctl) path for mapping and unmapping persistent memory buffers can be triggered by an authenticated local application. Improper synchronization on these operations lets a low-privileged process corrupt kernel memory to gain full confidentiality, integrity, and availability impact. There is no public exploit identified at time of analysis, and EPSS is very low (0.09%), consistent with CISA SSVC scoring exploitation as none.

Technical ContextAI

The flaw resides in a Qualcomm kernel-mode driver that exposes ioctl operations for managing persistent memory buffers (map/unmap). CWE-416 (Use After Free) combined with the described 'improper synchronization' indicates a race condition: concurrent ioctl invocations can free a buffer object while another thread still holds and dereferences a stale pointer, allowing controlled reuse of freed kernel memory. Per the CPE (cpe:2.3:a:qualcomm,_inc.:snapdragon), the affected component is Qualcomm's Snapdragon platform software/firmware stack, which spans mobile SoCs, FastConnect Wi-Fi/BT combos, WCD/WSA audio codecs, WCN connectivity chips, and XR/AR platforms - all reachable through the same driver interface on Android and other Snapdragon-based devices. Tags reinforce this as a memory-corruption/use-after-free/buffer-overflow class defect.

RemediationAI

Patch available per vendor advisory: apply the fixes referenced in Qualcomm's July 2026 Security Bulletin (https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html); no exact fixed firmware version string was included in the provided data, so confirm the specific patched build for each affected part against that bulletin. In practice this reaches end-user devices through the corresponding OEM/Android security update, so apply the vendor firmware or monthly device update that incorporates the Qualcomm fix. Because exploitation requires local code execution, effective compensating controls until patching include restricting installation of untrusted applications and limiting which processes can open the affected Qualcomm device nodes (tighten SELinux/permission policy on the driver's /dev entries so only trusted system components can issue these ioctls); the trade-off is that overly strict device-node policy may break legitimate audio, connectivity, or XR functionality that relies on the same driver, so test before enforcing.

CVE-2026-25293 CRITICAL
9.6 May 04

Buffer overflow in Qualcomm Snapdragon firmware enables authentication bypass on adjacent networks, allowing remote unau

CVE-2026-25268 HIGH
8.8 Jul 06

Local privilege escalation and memory corruption in Qualcomm Snapdragon WLAN firmware occurs when the driver parses malf

CVE-2026-25277 HIGH
8.8 Jun 01

Memory corruption in Qualcomm Snapdragon Strongbox component allows local low-privileged attackers to trigger a buffer o

CVE-2026-25276 HIGH
8.8 Jun 01

Local privilege escalation in Qualcomm Snapdragon chipsets stems from an out-of-bounds memory access in the Strongbox tr

CVE-2025-47392 HIGH
8.8 Apr 06

Memory corruption in Qualcomm Snapdragon chipsets allows adjacent network attackers to achieve arbitrary code execution

CVE-2026-24088 HIGH
8.2 Jun 01

Bootloader integrity bypass in Qualcomm Snapdragon platforms allows a high-privileged local attacker to write to a speci

CVE-2026-21379 HIGH
7.8 Jul 06

Local privilege escalation via memory corruption affects Qualcomm Snapdragon platforms, where allocating memory with siz

CVE-2025-59616 HIGH
7.8 Jul 06

Use-after-free memory corruption in Qualcomm Snapdragon platform driver code allows a local low-privileged process to tr

CVE-2026-25259 HIGH
7.8 Jun 01

Local privilege escalation in Qualcomm Snapdragon platforms is possible through memory corruption when processing multip

CVE-2026-25258 HIGH
7.8 Jun 01

Local privilege escalation in Qualcomm Snapdragon platforms stems from an out-of-bounds read (CWE-125) triggered during

CVE-2025-59606 HIGH
7.8 Jun 01

Local privilege escalation and memory corruption in Qualcomm Snapdragon platforms allows an attacker with low-privileged

CVE-2025-59605 HIGH
7.8 Jun 01

Local privilege escalation via memory corruption in Qualcomm Snapdragon platform components allows an authenticated low-

Share

CVE-2025-59615 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy