7.8

CVE-2025-59616

Use After Free in Computer Vision

Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
QualcommMolokai Firmware Version-
   QualcommMolokai Version-
QualcommOrne Firmware Version-
   QualcommOrne Version-
QualcommPandeiro Firmware Version-
   QualcommPandeiro Version-
QualcommQcm5430 Firmware Version-
   QualcommQcm5430 Version-
QualcommQcm6490 Firmware Version-
   QualcommQcm6490 Version-
QualcommQmp1000 Firmware Version-
   QualcommQmp1000 Version-
QualcommQmp2001 Firmware Version-
   QualcommQmp2001 Version-
QualcommSc8380xp Firmware Version-
   QualcommSc8380xp Version-
QualcommSd865 5g Firmware Version-
   QualcommSd865 5g Version-
QualcommSm6850 Firmware Version-
   QualcommSm6850 Version-
QualcommSm8845p Firmware Version-
   QualcommSm8845p Version-
QualcommSxr2230p Firmware Version-
   QualcommSxr2230p Version-
QualcommSxr2250p Firmware Version-
   QualcommSxr2250p Version-
QualcommWcd9370 Firmware Version-
   QualcommWcd9370 Version-
QualcommWcd9375 Firmware Version-
   QualcommWcd9375 Version-
QualcommWcd9378 Firmware Version-
   QualcommWcd9378 Version-
QualcommWcd9380 Firmware Version-
   QualcommWcd9380 Version-
QualcommWcd9385 Firmware Version-
   QualcommWcd9385 Version-
QualcommWcd9395 Firmware Version-
   QualcommWcd9395 Version-
QualcommWcn3950 Firmware Version-
   QualcommWcn3950 Version-
QualcommWcn3988 Firmware Version-
   QualcommWcn3988 Version-
QualcommWcn6450 Firmware Version-
   QualcommWcn6450 Version-
QualcommWcn7760 Firmware Version-
   QualcommWcn7760 Version-
QualcommWcn7860 Firmware Version-
   QualcommWcn7860 Version-
QualcommWcn7861 Firmware Version-
   QualcommWcn7861 Version-
QualcommWcn7880 Firmware Version-
   QualcommWcn7880 Version-
QualcommWcn7881 Firmware Version-
   QualcommWcn7881 Version-
QualcommWsa8810 Firmware Version-
   QualcommWsa8810 Version-
QualcommWsa8815 Firmware Version-
   QualcommWsa8815 Version-
QualcommWsa8830 Firmware Version-
   QualcommWsa8830 Version-
QualcommWsa8832 Firmware Version-
   QualcommWsa8832 Version-
QualcommWsa8835 Firmware Version-
   QualcommWsa8835 Version-
QualcommWsa8840 Firmware Version-
   QualcommWsa8840 Version-
QualcommWsa8845 Firmware Version-
   QualcommWsa8845 Version-
QualcommWsa8845h Firmware Version-
   QualcommWsa8845h Version-
QualcommWsa8850 Firmware Version-
   QualcommWsa8850 Version-
QualcommWsa8850w Firmware Version-
   QualcommWsa8850w Version-
QualcommWsa8855c Firmware Version-
   QualcommWsa8855c Version-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.06% 0
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
product-security@qualcomm.com 6.6 0.8 5.3
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://docs.qualcomm.com/product/publicresources/securitybulletin/july-2026-bulletin.html
Patch
Vendor Advisory