Denial of Service Affecting Qualcomm's Network Products
CVE-2026-21367

7.6HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 April 2026

What is CVE-2026-21367?

A vulnerability exists in Qualcomm's network products where the processing of nonstandard FILS Discovery Frames can lead to a transient Denial of Service (DoS). This occurs specifically when out-of-range action sizes are encountered during initial scans, potentially disrupting network services and affecting connectivity for users.

Affected Version(s)

Snapdragon Snapdragon Auto AR8035

Snapdragon Snapdragon Auto Cologne

Snapdragon Snapdragon Auto CSR8811

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 6, 2026
Vulnerability Reserved
Dec 17, 2025

CVE-2026-21367 Data

JSON