CVE-2026-21378

HIGH

7.8

Descripcion

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

Detalles CVE

Puntuacion CVSS v3.17.8

SeveridadHIGH

Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vector de ataqueLOCAL

ComplejidadLOW

Privilegios requeridosLOW

Interaccion usuarioNONE

Publicado4/6/2026

Ultima modificacion4/8/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

qualcomm:aqt1000qualcomm:aqt1000_firmwarequalcomm:colognequalcomm:cologne_firmwarequalcomm:fastconnect_6200qualcomm:fastconnect_6200_firmwarequalcomm:fastconnect_6700qualcomm:fastconnect_6700_firmwarequalcomm:fastconnect_6800qualcomm:fastconnect_6800_firmwarequalcomm:fastconnect_6900qualcomm:fastconnect_6900_firmwarequalcomm:fastconnect_7800qualcomm:fastconnect_7800_firmwarequalcomm:qca0000qualcomm:qca0000_firmwarequalcomm:qca6391qualcomm:qca6391_firmwarequalcomm:qca6420qualcomm:qca6420_firmwarequalcomm:qca6430qualcomm:qca6430_firmwarequalcomm:qcm5430qualcomm:qcm5430_firmwarequalcomm:qcm6490qualcomm:qcm6490_firmwarequalcomm:sc8380xpqualcomm:sc8380xp_firmwarequalcomm:sm6250qualcomm:sm6250_firmwarequalcomm:snapdragon_460_mobile_platformqualcomm:snapdragon_460_mobile_platform_firmwarequalcomm:snapdragon_662_mobile_platformqualcomm:snapdragon_662_mobile_platform_firmwarequalcomm:snapdragon_7c\+_gen_3_computequalcomm:snapdragon_7c\+_gen_3_compute_firmwarequalcomm:snapdragon_7c_compute_platformqualcomm:snapdragon_7c_compute_platform_firmwarequalcomm:snapdragon_7c_gen_2_compute_platformqualcomm:snapdragon_7c_gen_2_compute_platform_firmwarequalcomm:snapdragon_8c_compute_platformqualcomm:snapdragon_8c_compute_platform_firmwarequalcomm:snapdragon_8cx_compute_platformqualcomm:snapdragon_8cx_compute_platform_firmwarequalcomm:snapdragon_8cx_gen_2_5g_compute_platformqualcomm:snapdragon_8cx_gen_2_5g_compute_platform_firmwarequalcomm:snapdragon_8cx_gen_3_compute_platformqualcomm:snapdragon_8cx_gen_3_compute_platform_firmwarequalcomm:snapdragon_ar1_gen_1_platformqualcomm:snapdragon_ar1_gen_1_platform_firmwarequalcomm:video_collaboration_vc3_platformqualcomm:video_collaboration_vc3_platform_firmwarequalcomm:wcd9340qualcomm:wcd9340_firmwarequalcomm:wcd9341qualcomm:wcd9341_firmwarequalcomm:wcd9370qualcomm:wcd9370_firmwarequalcomm:wcd9375qualcomm:wcd9375_firmwarequalcomm:wcd9378cqualcomm:wcd9378c_firmwarequalcomm:wcd9380qualcomm:wcd9380_firmwarequalcomm:wcd9385qualcomm:wcd9385_firmwarequalcomm:wcn3950qualcomm:wcn3950_firmwarequalcomm:wcn3988qualcomm:wcn3988_firmwarequalcomm:wsa8810qualcomm:wsa8810_firmwarequalcomm:wsa8815qualcomm:wsa8815_firmwarequalcomm:wsa8830qualcomm:wsa8830_firmwarequalcomm:wsa8832qualcomm:wsa8832_firmwarequalcomm:wsa8835qualcomm:wsa8835_firmwarequalcomm:wsa8840qualcomm:wsa8840_firmwarequalcomm:wsa8845qualcomm:wsa8845_firmwarequalcomm:wsa8845hqualcomm:wsa8845h_firmwarequalcomm:x2000077qualcomm:x2000077_firmwarequalcomm:x2000086qualcomm:x2000086_firmwarequalcomm:x2000090qualcomm:x2000090_firmwarequalcomm:x2000092qualcomm:x2000092_firmwarequalcomm:x2000094qualcomm:x2000094_firmwarequalcomm:xg101002qualcomm:xg101002_firmwarequalcomm:xg101032qualcomm:xg101032_firmwarequalcomm:xg101039qualcomm:xg101039_firmware

Debilidades (CWE)

CWE-126

Referencias

https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html(product-security@qualcomm.com)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.