Memory Corruption in Qualcomm Products via Fastboot OEM Commands
CVE-2026-24087

7.2HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 1 June 2026

What is CVE-2026-24087?

A memory corruption issue has been identified in Qualcomm products that occurs during the processing of fastboot OEM commands. This vulnerability may allow an attacker to exploit the memory management processes within the affected system, potentially leading to unauthorized access or system instability. It is crucial for users and administrators of Qualcomm devices to review the security protocols and implement necessary updates to mitigate risks associated with this vulnerability.

Affected Version(s)

Snapdragon XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24087 Data

JSON