Memory Corruption Vulnerability in Strongbox by Qualcomm
CVE-2026-25276

8.8HIGH

Key Information:

Vendor: Qualcomm
Status: Snapdragon
Vendor: CVE Published:; 1 June 2026

What is CVE-2026-25276?

The vulnerability in Strongbox arises from a memory corruption issue attributed to missing bounds checks, potentially allowing unauthorized access or manipulation of system processes. Proper safeguards should be implemented to mitigate the risks associated with this vulnerability and ensure the integrity of systems using Strongbox.

Affected Version(s)

Snapdragon Snapdragon Mobile Snapdragon 8 Gen 2 Mobile Platform

Snapdragon Snapdragon Mobile Snapdragon 8+ Gen 2 Mobile Platform

Snapdragon Snapdragon Mobile Snapdragon 8 Gen 3 Mobile Platform

References

https://docs.qualcomm.com/product/publicresources/securit...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Feb 2, 2026

CVE-2026-25276 Data

JSON