Severity by source
AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionCVE.org
Memory corruption while using Strongbox due to buffer overflow.
AnalysisAI
Memory corruption in Qualcomm Snapdragon Strongbox component allows local low-privileged attackers to trigger a buffer overflow that crosses a security boundary (scope changed) and compromises confidentiality, integrity, and availability of the device. The flaw is reported directly by Qualcomm in the June 2026 security bulletin and carries a CVSS 3.1 base score of 8.8 with no public exploit identified at time of analysis. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Attacker must already have local code execution on the device as an unprivileged Android process with permission to invoke the Strongbox/Keymaster HAL (i.e., any installed app that can call AndroidKeyStore APIs with setIsStrongBoxBacked(true), or any process with access to the keystore IPC) - confirmed by CVSS AV:L/PR:L/UI:N. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS vector AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H scores 8.8 and accurately captures the real risk profile: exploitation requires only local access and low privileges (any app or local process able to reach the Strongbox/Keymaster HAL interface) with no user interaction, and a successful overflow yields high impact across all three CIA properties while crossing a trust boundary. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | A malicious app installed on a Snapdragon-based Android device - sideloaded or delivered through a trojanized Play listing - uses the standard Keymaster/Strongbox HAL to send a crafted request whose attacker-controlled length field overflows a fixed-size buffer inside the Strongbox trusted application. The overflow corrupts memory in the more privileged TEE context (Scope:Changed), enabling the attacker to read or tamper with hardware-bound keys, defeat attestation, or destabilize the keystore. … |
| Remediation | Apply the Qualcomm-released patch by updating to the June 2026 (or later) Android security patch level once the device OEM publishes a firmware image that includes the fixed Strongbox/trusted-application code, per the vendor advisory at https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: Inventory all Snapdragon devices in your enterprise (Android phones, tablets, automotive, IoT) and document current firmware versions. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
More in Snapdragon
View allBuffer overflow in Qualcomm Snapdragon firmware enables authentication bypass on adjacent networks, allowing remote unau
Local privilege escalation in Qualcomm Snapdragon chipsets stems from an out-of-bounds memory access in the Strongbox tr
Memory corruption in Qualcomm Snapdragon chipsets allows adjacent network attackers to achieve arbitrary code execution
Bootloader integrity bypass in Qualcomm Snapdragon platforms allows a high-privileged local attacker to write to a speci
Local privilege escalation in Qualcomm Snapdragon platforms is possible through memory corruption when processing multip
Local privilege escalation in Qualcomm Snapdragon platforms stems from an out-of-bounds read (CWE-125) triggered during
Local privilege escalation and memory corruption in Qualcomm Snapdragon platforms allows an attacker with low-privileged
Local privilege escalation via memory corruption in Qualcomm Snapdragon platform components allows an authenticated low-
Local memory corruption in Qualcomm Snapdragon platforms (CVE-2025-59604) allows a low-privileged local attacker to trig
Use-after-free vulnerability in Qualcomm Snapdragon chipsets enables local privilege escalation to achieve full device c
Memory corruption in Qualcomm Snapdragon allows local authenticated attackers with low privileges to achieve arbitrary c
Memory corruption in Qualcomm Snapdragon camera subsystem allows local authenticated users to execute arbitrary code wit
Same weakness CWE-120 – Classic Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-33827
GHSA-gffw-46h4-vh42