CVE-2025-59604
published 2026-06-01CVE-2025-59604: Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
PriorityP341high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.07%
0.1th percentile
Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
Affected
218 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Qualcomm Snapdragon Auto up to XG101039 null pointer dereference (WID-SEC-2026-1772)
vuldb·2026-06-03·CVSS 7.8
CVE-2025-59604 [HIGH] Qualcomm Snapdragon Auto up to XG101039 null pointer dereference (WID-SEC-2026-1772)
A vulnerability described as critical has been identified in Qualcomm Snapdragon Auto, Snapdragon CCW, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon WBC and Snapdragon Wearables. This issue affects some unknown processing. Such manipulation leads to null pointer dereference.
This vulnerability is listed as CVE-2025-59604. The attack must be carried out locally. There is no available exploit.
Upgrading the affected component is recommended.
GHSA
Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
ghsa_unreviewed·2026-06-02
CVE-2025-59604 [HIGH] CWE-476 Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-06-01
Published