Memory Corruption in Qualcomm Products Due to Null Pointer Dereference
CVE-2025-59604

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 1 June 2026

What is CVE-2025-59604?

This vulnerability relates to memory corruption resulting from invalid write operations triggered by a null pointer dereference during memory copy processes. When the affected software executes a memory operation without properly validating pointers, it may lead to instability or unauthorized access, posing risks to device integrity and data security. Users are advised to review the latest security updates from Qualcomm and apply any patches to mitigate potential security threats.

Affected Version(s)

Snapdragon Snapdragon Auto AR8035

Snapdragon Snapdragon Auto Cologne

Snapdragon Snapdragon Auto CSRA6620

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Sep 18, 2025

CVE-2025-59604 Data

JSON