5.3 CVE-2026-21370

Enriched by CISA Patch
 

Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values.
https://nvd.nist.gov/vuln/detail/CVE-2026-21370

Categories

CWE-787 : Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer. At the point when the product writes data to an invalid location, it is likely that a separate weakness already occurred earlier. For example, the product might alter an index, perform incorrect pointer arithmetic, initialize or release memory incorrectly, etc., thus referencing a memory location outside the buffer. Often used to describe the consequences of writing to memory outside the bounds of a buffer, or to memory that is otherwise invalid. This weakness can be detected using dynamic tools and techniques that interact with the software using large test suites with many diverse inputs, such as fuzz testing (fuzzing), robustness testing, and fault injection. The software's operation may slow down, but it should not become unstable, crash, or generate incorrect results. Use tools that are integrated duringcompilation to insert runtime error-checking mechanismsrelated to memory safety errors, such as AddressSanitizer(ASan) for C/C++ [REF-1518]. Replace unbounded copy functions with analogous functions that support length arguments, such as strcpy with strncpy. Create these if they are not available. Font rendering library does not properlyhandle assigning a signed short value to an unsignedlong (CWE-195), leading to an integer wraparound(CWE-190), causing too small of a buffer (CWE-131),leading to an out-of-bounds write(CWE-787). The reference implementation code for a Trusted Platform Module does not implement length checks on data, allowing for an attacker to write 2 bytes past the end of a buffer. Chain: insufficient input validation (CWE-20) in browser allows heap corruption (CWE-787), as exploited in the wild per CISA KEV. GPU kernel driver allows memory corruption because a user can obtain read/write access to read-only pages, as exploited in the wild per CISA KEV. Chain: integer truncation (CWE-197) causes small buffer allocation (CWE-131) leading to out-of-bounds write (CWE-787) in kernel pool, as exploited in the wild per CISA KEV. Out-of-bounds write in kernel-mode driver, as exploited in the wild per CISA KEV. Escape from browser sandbox using out-of-bounds write due to incorrect bounds check, as exploited in the wild per CISA KEV. Memory corruption in web browser scripting engine, as exploited in the wild per CISA KEV. chain: mobile phone Bluetooth implementation does not include offset when calculating packet length (CWE-682), leading to out-of-bounds write (CWE-787) Chain: compiler optimization (CWE-733) removes or modifies code used to detect integer overflow (CWE-190), allowing out-of-bounds write (CWE-787). malformed inputs cause accesses of uninitialized or previously-deleted objects, leading to memory corruption chain: -1 value from a function call was intended to indicate an error, but is used as an array index instead. Unchecked length of SSLv2 challenge value leads to buffer underflow. Buffer underflow from a small size value with a large buffer (length parameter inconsistency, CWE-130) Chain: integer signedness error (CWE-195) passes signed comparison, leading to heap overflow (CWE-122) Classic stack-based buffer overflow in media player using a long entry in a playlist Heap-based buffer overflow in media player using a long entry in a playlist

References

product-security@qualcomm.com Patch


 

AFFECTED (from MITRE)


Vendor Product Versions
Qualcomm, Inc. Snapdragon
  • FastConnect 6700 [affected]
  • FastConnect 6900 [affected]
  • FastConnect 7800 [affected]
  • G3x Gen 2 [affected]
  • IQ9 Series Platform [affected]
  • LeMans_AU_LGIT [affected]
  • LeMansAU [affected]
  • Netrani [affected]
  • Pandeiro [affected]
  • QAM8255P [affected]
  • QAMSRV1H [affected]
  • QAMSRV1M [affected]
  • QCA6595 [affected]
  • QCA6595AU [affected]
  • QCA6678AQ [affected]
  • QCA6698AQ [affected]
  • QCA6698AU [affected]
  • QCA6797AQ [affected]
  • QCM4490 [affected]
  • QCM8838 [affected]
  • QCS4490 [affected]
  • QCS8550 [affected]
  • QLN1083BD [affected]
  • QLN1086BD [affected]
  • QPA1083BD [affected]
  • QPA1086BD [affected]
  • QXM1093 [affected]
  • QXM1094 [affected]
  • QXM1095 [affected]
  • QXM1096 [affected]
  • SA7255P [affected]
  • SA7775P [affected]
  • SA8255P [affected]
  • SA8620P [affected]
  • SA8770P [affected]
  • SA9000P [affected]
  • SAR2130P [affected]
  • SC8380XP [affected]
  • SD 8 Gen1 5G [affected]
  • SD865 5G [affected]
  • SDR753 [affected]
  • SM7435 [affected]
  • SM7525 [affected]
  • SM7550 [affected]
  • SM7550P [affected]
  • SM8550P [affected]
  • Snapdragon 4 Gen 2 Mobile Platform [affected]
  • Snapdragon 460 Mobile Platform [affected]
  • Snapdragon 6 Gen 1 Mobile Platform [affected]
  • Snapdragon 6 Gen 3 Mobile Platform [affected]
  • Snapdragon 662 Mobile Platform [affected]
  • Snapdragon 7 Gen 1 Mobile Platform [affected]
  • Snapdragon 8 Elite [affected]
  • Snapdragon 8 Gen 1 Mobile Platform [affected]
  • Snapdragon 8 Gen 2 Mobile Platform [affected]
  • Snapdragon 8+ Gen 2 Mobile Platform [affected]
  • Snapdragon AR1 Gen 1 Platform [affected]
  • Snapdragon XR2 5G Platform [affected]
  • Snapdragon XR2+ Gen 1 Platform [affected]
  • SRV1H [affected]
  • SRV1M [affected]
  • SXR2230P [affected]
  • SXR2330P [affected]
  • SXR2350P [affected]
  • WCD9370 [affected]
  • WCD9371 [affected]
  • WCD9375 [affected]
  • WCD9378 [affected]
  • WCD9380 [affected]
  • WCD9385 [affected]
  • WCD9390 [affected]
  • WCD9395 [affected]
  • WCN3950 [affected]
  • WCN3988 [affected]
  • WCN6450 [affected]
  • WCN6650 [affected]
  • WCN6755 [affected]
  • WCN7860 [affected]
  • WCN7861 [affected]
  • WCN7881 [affected]
  • WSA8810 [affected]
  • WSA8815 [affected]
  • WSA8830 [affected]
  • WSA8832 [affected]
  • WSA8835 [affected]
  • WSA8840 [affected]
  • WSA8845 [affected]
  • WSA8845H [affected]
  • X1E80100 [affected]
  • XRV7209 [affected]
  • XRV9209 [affected]
© 2022 The MITRE Corporation. This work is reproduced and distributed with the permission of The MITRE Corporation.

CPE

cpe start end
Configuration 1
AND
   cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:fastconnect_6700:-:*:*:*:*:*:*:*
Configuration 2
AND
   cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:fastconnect_6900:-:*:*:*:*:*:*:*
Configuration 3
AND
   cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:fastconnect_7800:-:*:*:*:*:*:*:*
Configuration 4
AND
   cpe:2.3:o:qualcomm:g3x_gen_2_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:g3x_gen_2:-:*:*:*:*:*:*:*
Configuration 5
AND
   cpe:2.3:o:qualcomm:iq-9075_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:iq-9075:-:*:*:*:*:*:*:*
Configuration 6
AND
   cpe:2.3:o:qualcomm:lemans_au_lgit_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:lemans_au_lgit:-:*:*:*:*:*:*:*
Configuration 7
AND
   cpe:2.3:o:qualcomm:lemansau_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:lemansau:-:*:*:*:*:*:*:*
Configuration 8
AND
   cpe:2.3:o:qualcomm:netrani_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:netrani:-:*:*:*:*:*:*:*
Configuration 9
AND
   cpe:2.3:o:qualcomm:pandeiro_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:pandeiro:-:*:*:*:*:*:*:*
Configuration 10
AND
   cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qam8255p:-:*:*:*:*:*:*:*
Configuration 11
AND
   cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qamsrv1h:-:*:*:*:*:*:*:*
Configuration 12
AND
   cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qamsrv1m:-:*:*:*:*:*:*:*
Configuration 13
AND
   cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*
Configuration 14
AND
   cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*
Configuration 15
AND
   cpe:2.3:o:qualcomm:qca6678aq_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qca6678aq:-:*:*:*:*:*:*:*
Configuration 16
AND
   cpe:2.3:o:qualcomm:qca6698aq_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qca6698aq:-:*:*:*:*:*:*:*
Configuration 17
AND
   cpe:2.3:o:qualcomm:qca6698au_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qca6698au:-:*:*:*:*:*:*:*
Configuration 18
AND
   cpe:2.3:o:qualcomm:qca6797aq_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qca6797aq:-:*:*:*:*:*:*:*
Configuration 19
AND
   cpe:2.3:o:qualcomm:qcm4490_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qcm4490:-:*:*:*:*:*:*:*
Configuration 20
AND
   cpe:2.3:o:qualcomm:qcm8838_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qcm8838:-:*:*:*:*:*:*:*
Configuration 21
AND
   cpe:2.3:o:qualcomm:qcs4490_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qcs4490:-:*:*:*:*:*:*:*
Configuration 22
AND
   cpe:2.3:o:qualcomm:qcs8550_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qcs8550:-:*:*:*:*:*:*:*
Configuration 23
AND
   cpe:2.3:o:qualcomm:qln1083bd_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qln1083bd:-:*:*:*:*:*:*:*
Configuration 24
AND
   cpe:2.3:o:qualcomm:qln1086bd_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qln1086bd:-:*:*:*:*:*:*:*
Configuration 25
AND
   cpe:2.3:o:qualcomm:qpa1083bd_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qpa1083bd:-:*:*:*:*:*:*:*
Configuration 26
AND
   cpe:2.3:o:qualcomm:qpa1086bd_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qpa1086bd:-:*:*:*:*:*:*:*
Configuration 27
AND
   cpe:2.3:o:qualcomm:qxm1093_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qxm1093:-:*:*:*:*:*:*:*
Configuration 28
AND
   cpe:2.3:o:qualcomm:qxm1094_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qxm1094:-:*:*:*:*:*:*:*
Configuration 29
AND
   cpe:2.3:o:qualcomm:qxm1095_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qxm1095:-:*:*:*:*:*:*:*
Configuration 30
AND
   cpe:2.3:o:qualcomm:qxm1096_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:qxm1096:-:*:*:*:*:*:*:*
Configuration 31
AND
   cpe:2.3:o:qualcomm:sa7255p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sa7255p:-:*:*:*:*:*:*:*
Configuration 32
AND
   cpe:2.3:o:qualcomm:sa7775p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sa7775p:-:*:*:*:*:*:*:*
Configuration 33
AND
   cpe:2.3:o:qualcomm:sa8255p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sa8255p:-:*:*:*:*:*:*:*
Configuration 34
AND
   cpe:2.3:o:qualcomm:sa8620p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sa8620p:-:*:*:*:*:*:*:*
Configuration 35
AND
   cpe:2.3:o:qualcomm:sa8770p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sa8770p:-:*:*:*:*:*:*:*
Configuration 36
AND
   cpe:2.3:o:qualcomm:sa9000p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sa9000p:-:*:*:*:*:*:*:*
Configuration 37
AND
   cpe:2.3:o:qualcomm:sar2130p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sar2130p:-:*:*:*:*:*:*:*
Configuration 38
AND
   cpe:2.3:o:qualcomm:sc8380xp_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sc8380xp:-:*:*:*:*:*:*:*
Configuration 39
AND
   cpe:2.3:o:qualcomm:sd_8_gen1_5g_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sd_8_gen1_5g:-:*:*:*:*:*:*:*
Configuration 40
AND
   cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*
Configuration 41
AND
   cpe:2.3:o:qualcomm:sdr753_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sdr753:-:*:*:*:*:*:*:*
Configuration 42
AND
   cpe:2.3:o:qualcomm:sm7435_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sm7435:-:*:*:*:*:*:*:*
Configuration 43
AND
   cpe:2.3:o:qualcomm:sm7525_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sm7525:-:*:*:*:*:*:*:*
Configuration 44
AND
   cpe:2.3:o:qualcomm:sm7550_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sm7550:-:*:*:*:*:*:*:*
Configuration 45
AND
   cpe:2.3:o:qualcomm:sm7550p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sm7550p:-:*:*:*:*:*:*:*
Configuration 46
AND
   cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sm8550p:-:*:*:*:*:*:*:*
Configuration 47
AND
   cpe:2.3:o:qualcomm:snapdragon_4_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_4_gen_2_mobile_platform:-:*:*:*:*:*:*:*
Configuration 48
AND
   cpe:2.3:o:qualcomm:snapdragon_460_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_460_mobile_platform:-:*:*:*:*:*:*:*
Configuration 49
AND
   cpe:2.3:o:qualcomm:snapdragon_6_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_6_gen_1_mobile_platform:-:*:*:*:*:*:*:*
Configuration 50
AND
   cpe:2.3:o:qualcomm:snapdragon_6_gen_3_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_6_gen_3_mobile_platform:-:*:*:*:*:*:*:*
Configuration 51
AND
   cpe:2.3:o:qualcomm:snapdragon_662_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_662_mobile_platform:-:*:*:*:*:*:*:*
Configuration 52
AND
   cpe:2.3:o:qualcomm:snapdragon_7_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_7_gen_1_mobile_platform:-:*:*:*:*:*:*:*
Configuration 53
AND
   cpe:2.3:o:qualcomm:snapdragon_8_elite_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_8_elite:-:*:*:*:*:*:*:*
Configuration 54
AND
   cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_8_gen_1_mobile_platform:-:*:*:*:*:*:*:*
Configuration 55
AND
   cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_8_gen_2_mobile_platform:-:*:*:*:*:*:*:*
Configuration 56
AND
   cpe:2.3:o:qualcomm:snapdragon_8+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_8+_gen_2_mobile_platform:-:*:*:*:*:*:*:*
Configuration 57
AND
   cpe:2.3:o:qualcomm:snapdragon_ar1_gen_1_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_ar1_gen_1_platform:-:*:*:*:*:*:*:*
Configuration 58
AND
   cpe:2.3:o:qualcomm:snapdragon_xr2_5g_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_xr2_5g_platform:-:*:*:*:*:*:*:*
Configuration 59
AND
   cpe:2.3:o:qualcomm:snapdragon_xr2+_gen_1_platform_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:snapdragon_xr2+_gen_1_platform:-:*:*:*:*:*:*:*
Configuration 60
AND
   cpe:2.3:o:qualcomm:srv1h_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:srv1h:-:*:*:*:*:*:*:*
Configuration 61
AND
   cpe:2.3:o:qualcomm:srv1m_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:srv1m:-:*:*:*:*:*:*:*
Configuration 62
AND
   cpe:2.3:o:qualcomm:sxr2230p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sxr2230p:-:*:*:*:*:*:*:*
Configuration 63
AND
   cpe:2.3:o:qualcomm:sxr2330p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sxr2330p:-:*:*:*:*:*:*:*
Configuration 64
AND
   cpe:2.3:o:qualcomm:sxr2350p_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:sxr2350p:-:*:*:*:*:*:*:*
Configuration 65
AND
   cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*
Configuration 66
AND
   cpe:2.3:o:qualcomm:wcd9371_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9371:-:*:*:*:*:*:*:*
Configuration 67
AND
   cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*
Configuration 68
AND
   cpe:2.3:o:qualcomm:wcd9378_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9378:-:*:*:*:*:*:*:*
Configuration 69
AND
   cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*
Configuration 70
AND
   cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*
Configuration 71
AND
   cpe:2.3:o:qualcomm:wcd9390_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9390:-:*:*:*:*:*:*:*
Configuration 72
AND
   cpe:2.3:o:qualcomm:wcd9395_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcd9395:-:*:*:*:*:*:*:*
Configuration 73
AND
   cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*
Configuration 74
AND
   cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*
Configuration 75
AND
   cpe:2.3:o:qualcomm:wcn6450_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn6450:-:*:*:*:*:*:*:*
Configuration 76
AND
   cpe:2.3:o:qualcomm:wcn6650_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn6650:-:*:*:*:*:*:*:*
Configuration 77
AND
   cpe:2.3:o:qualcomm:wcn6755_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn6755:-:*:*:*:*:*:*:*
Configuration 78
AND
   cpe:2.3:o:qualcomm:wcn7860_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn7860:-:*:*:*:*:*:*:*
Configuration 79
AND
   cpe:2.3:o:qualcomm:wcn7861_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn7861:-:*:*:*:*:*:*:*
Configuration 80
AND
   cpe:2.3:o:qualcomm:wcn7881_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wcn7881:-:*:*:*:*:*:*:*
Configuration 81
AND
   cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*
Configuration 82
AND
   cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*
Configuration 83
AND
   cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*
Configuration 84
AND
   cpe:2.3:o:qualcomm:wsa8832_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8832:-:*:*:*:*:*:*:*
Configuration 85
AND
   cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*
Configuration 86
AND
   cpe:2.3:o:qualcomm:wsa8840_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8840:-:*:*:*:*:*:*:*
Configuration 87
AND
   cpe:2.3:o:qualcomm:wsa8845_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8845:-:*:*:*:*:*:*:*
Configuration 88
AND
   cpe:2.3:o:qualcomm:wsa8845h_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:wsa8845h:-:*:*:*:*:*:*:*
Configuration 89
AND
   cpe:2.3:o:qualcomm:x1e80100_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:x1e80100:-:*:*:*:*:*:*:*
Configuration 90
AND
   cpe:2.3:o:qualcomm:xrv7209_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:xrv7209:-:*:*:*:*:*:*:*
Configuration 91
AND
   cpe:2.3:o:qualcomm:xrv9209_firmware:-:*:*:*:*:*:*:*
  Running on/with
  cpe:2.3:h:qualcomm:xrv9209:-:*:*:*:*:*:*:*


REMEDIATION


Patch

Url
https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-...


EXPLOITS


Exploit-db.com

id description date
No known exploits

POC Github

Url
No known exploits

Other Nist (github, ...)

Url
No known exploits


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry