Memory Corruption Vulnerability in Qualcomm Video Management
CVE-2026-21380

7.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 6 April 2026

What is CVE-2026-21380?

A vulnerability exists in Qualcomm's video management system related to memory corruption triggered by the use of deprecated DMABUF IOCTL calls to manage video memory. This flaw can potentially compromise system integrity, allowing unauthorized access to memory regions. It is imperative for users and administrators of the affected video management systems to evaluate their current configurations and apply necessary mitigations as outlined in the vendor's security bulletin.

Affected Version(s)

Snapdragon Snapdragon Compute Cologne

Snapdragon Snapdragon Compute FastConnect 6900

Snapdragon Snapdragon Compute FastConnect 7800

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 6, 2026
Vulnerability Reserved
Dec 17, 2025

CVE-2026-21380 Data

JSON