CVE-2026-24082
published 2026-05-04CVE-2026-24082: Memory Corruption when copying data from a freed source while executing performance counter deselect operation.
PriorityP342high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
EPSS
0.07%
0.1th percentile
Memory Corruption when copying data from a freed source while executing performance counter deselect operation.
Affected
176 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9j5v-65hm-h3jh: Memory Corruption when copying data from a freed source while executing performance counter deselect operation
ghsa_unreviewed·2026-05-04
CVE-2026-24082 [HIGH] CWE-416 GHSA-9j5v-65hm-h3jh: Memory Corruption when copying data from a freed source while executing performance counter deselect operation
Memory Corruption when copying data from a freed source while executing performance counter deselect operation.
VulDB
Qualcomm Snapdragon Auto up to XRV9209 Performance Counter use after free
vuldb·2026-05-04·CVSS 7.8
CVE-2026-24082 [HIGH] Qualcomm Snapdragon Auto up to XRV9209 Performance Counter use after free
A vulnerability identified as critical has been detected in Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WBC and Snapdragon Wearables. This affects an unknown part of the component Performance Counter Handler. The manipulation leads to use after free.
This vulnerability is referenced as CVE-2026-24082. The attack can only be performed from a local environment. No exploit is available.
You should upgrade the affected component.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-05-04
Published