CVE-2026-21372
CVE-2026-21372
7.8
HighPublished:
Last updated:
Source:product-security@qualcomm.com
Analyzed
Weakness (CWE)
CVSS Vector
v3.1- Attack Vector
- Local
- Attack Complexity
- Low
- Privileges Required
- Low
- User Interaction
- None
- Scope
- Unchanged
- Confidentiality
- High
- Integrity
- High
- Availability
- High
Description
Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.
References
product-security@qualcomm.com
https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html