Memory Corruption Issue in Qualcomm Products
CVE-2026-21369

5.3MEDIUM

Key Information:

Vendor

Qualcomm

Vendor
CVE Published:
6 July 2026

What is CVE-2026-21369?

A memory corruption vulnerability has been identified in various Qualcomm devices, stemming from the mishandling of flash commands. This issue arises when outdated LED count values are used following modifications made in userspace, potentially leading to unpredictable behavior and system instability. It is essential for users and administrators of affected Qualcomm products to remain vigilant and follow best practices for security to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Snapdragon Snapdragon Auto FastConnect 6200

Snapdragon Snapdragon Auto FastConnect 6700

Snapdragon Snapdragon Auto FastConnect 6900

References

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.