Qualcomm Inc Snapdragon vulnerabilities

CVE-2026-21367 [HIGH] CWE-126 CVE-2026-21367: Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes durin Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

CVE-2026-21373 [HIGH] CWE-126 CVE-2026-21373: Memory Corruption when accessing an output buffer without validating its size during IOCTL processin Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

CVE-2025-47390 [HIGH] CWE-126 CVE-2025-47390: Memory corruption while preprocessing IOCTL request in JPEG driver. Memory corruption while preprocessing IOCTL request in JPEG driver.

CVE-2026-21381 [HIGH] CWE-126 CVE-2026-21381: Transient DOS when receiving a service data frame with excessive length during device matching over Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.

CVE-2026-21376 [HIGH] CWE-126 CVE-2026-21376: Memory Corruption when accessing an output buffer without validating its size during IOCTL processin Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

CVE-2026-21371 [HIGH] CWE-126 CVE-2026-21371: Memory Corruption when retrieving output buffer with insufficient size validation. Memory Corruption when retrieving output buffer with insufficient size validation.

CVE-2025-47400 [HIGH] CWE-126 CVE-2025-47400: Cryptographic issue while copying data to a destination buffer without validating its size. Cryptographic issue while copying data to a destination buffer without validating its size.

CVE-2026-21374 [HIGH] CWE-126 CVE-2026-21374: Memory Corruption when processing auxiliary sensor input/output control commands with insufficient b Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.

CVE-2026-21375 [HIGH] CWE-126 CVE-2026-21375: Memory Corruption when accessing an output buffer without validating its size during IOCTL processin Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

CVE-2026-21380 [HIGH] CWE-416 CVE-2026-21380: Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory. Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.

CVE-2025-47389 [HIGH] CWE-120 CVE-2025-47389: Memory corruption when buffer copy operation fails due to integer overflow during attestation report Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.

CVE-2026-21382 [HIGH] CWE-120 CVE-2026-21382: Memory Corruption when handling power management requests with improperly sized input/output buffers Memory Corruption when handling power management requests with improperly sized input/output buffers.

CVE-2026-21378 [HIGH] CWE-126 CVE-2026-21378: Memory Corruption when accessing an output buffer without validating its size during IOCTL processin Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

CVE-2026-21372 [HIGH] CWE-122 CVE-2026-21372: Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations. Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.

CVE-2025-47392 [HIGH] CWE-190 CVE-2025-47392: Memory corruption when decoding corrupted satellite data files with invalid signature offsets. Memory corruption when decoding corrupted satellite data files with invalid signature offsets.

CVE-2025-47391 [HIGH] CWE-121 CVE-2025-47391: Memory corruption while processing a frame request from user. Memory corruption while processing a frame request from user.

CVE-2025-47374 [MEDIUM] CWE-416 CVE-2025-47374: Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal hand Memory Corruption when accessing freed memory due to concurrent fence deregistration and signal handling.

CVE-2026-21385 [HIGH] CWE-190 CVE-2026-21385: Memory corruption while using alignments for memory allocation. Memory corruption while using alignments for memory allocation.

CVE-2025-47386 [HIGH] CWE-416 CVE-2025-47386: Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs. Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.

CVE-2025-47373 [HIGH] CWE-787 CVE-2025-47373: Memory Corruption when accessing buffers with invalid length during TA invocation. Memory Corruption when accessing buffers with invalid length during TA invocation.