Severity by source
AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionCVE.org
Memory Corruption when processing display command line information due to improper initialization of a variable.
AnalysisAI
Local privilege escalation in Qualcomm Snapdragon platforms stems from a stack-based memory corruption triggered while processing display command line information with an uninitialized variable. With CVSS 7.2 and a physical attack vector requiring high privileges, the flaw allows a privileged local attacker to corrupt memory and impact confidentiality, integrity, and availability across a changed security scope. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires physical access to a Snapdragon-based device (CVSS AV:P) and pre-existing high privileges on the device (PR:N is not set; PR:H), meaning the attacker must already be able to invoke the display subsystem's command line processing path - typically reachable only from a privileged system component, diagnostic/factory interface, or root-level userland. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS vector AV:P/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H signals a high-severity but narrowly reachable bug: physical access plus existing high privileges are required, which sharply reduces the population of plausible attackers, but a successful exploit yields full CIA impact and crosses a security boundary (Scope: Changed) - consistent with escaping a constrained display context into a more privileged domain. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker with physical access to a Snapdragon-based device and already-held high privileges (e.g., a malicious technician, repair shop insider, or lab adversary with root/diagnostic credentials) invokes the display command line interface with crafted parameters that drive the uninitialized variable into an out-of-bounds stack write. The resulting stack-based buffer overflow corrupts saved control data to hijack execution within the display component, and the Changed scope enables the attacker to escalate into a more privileged domain - for example tampering with display-rendered security UI, persisting code across the boot chain, or bridging into the kernel/firmware context. … |
| Remediation | Patch available per vendor advisory - apply the fixes published in Qualcomm's June 2026 Security Bulletin (https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html) by coordinating with the device OEM to absorb the updated Snapdragon BSP/firmware containing the corrected display command line handler, as exact fixed component versions are not enumerated in the available intelligence and depend on OEM integration timelines. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
24 hours: Identify and catalog all Qualcomm Snapdragon-based devices (mobile, IoT, automotive platforms) and assess physical access controls. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
More in Snapdragon
View allBuffer overflow in Qualcomm Snapdragon firmware enables authentication bypass on adjacent networks, allowing remote unau
Memory corruption in Qualcomm Snapdragon Strongbox component allows local low-privileged attackers to trigger a buffer o
Local privilege escalation in Qualcomm Snapdragon chipsets stems from an out-of-bounds memory access in the Strongbox tr
Memory corruption in Qualcomm Snapdragon chipsets allows adjacent network attackers to achieve arbitrary code execution
Bootloader integrity bypass in Qualcomm Snapdragon platforms allows a high-privileged local attacker to write to a speci
Local privilege escalation in Qualcomm Snapdragon platforms is possible through memory corruption when processing multip
Local privilege escalation in Qualcomm Snapdragon platforms stems from an out-of-bounds read (CWE-125) triggered during
Local privilege escalation and memory corruption in Qualcomm Snapdragon platforms allows an attacker with low-privileged
Local privilege escalation via memory corruption in Qualcomm Snapdragon platform components allows an authenticated low-
Local memory corruption in Qualcomm Snapdragon platforms (CVE-2025-59604) allows a low-privileged local attacker to trig
Use-after-free vulnerability in Qualcomm Snapdragon chipsets enables local privilege escalation to achieve full device c
Memory corruption in Qualcomm Snapdragon allows local authenticated attackers with low privileges to achieve arbitrary c
Same weakness CWE-121 – Stack-based Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-33843
GHSA-m8fr-cgc2-p8r8