July 2026 Security Bulletin
Published: 07/06/2026
This security bulletin is intended to help Qualcomm Technologies, Inc. (QTI) customers incorporate security updates in launched or upcoming devices. This document includes (i) a description of security issues that have been addressed in QTI’s proprietary code and (ii) links to publicly available code where security issues have been addressed.
Please reach out to securitybulletin@qti.qualcomm.com for any questions related to this bulletin.
Table of Contents
| Announcements |
| Acknowledgements |
| Proprietary Software Issues |
| Open Source Software Issues |
| Industry Coordination |
Announcements
None
Acknowledgements
We would like to thank these researchers for their contributions in reporting these issues to us.
| CVE-2026-25271,CVE-2025-59615,CVE-2025-59616,CVE-2025-59617,CVE-2026-21368,CVE-2026-21369,CVE-2026-21370,CVE-2026-21384 | heidada (heiheidada) |
Proprietary Software Issues
The tables below summarize security vulnerabilities that were addressed through proprietary software
This table lists high impact security vulnerabilities. Patches are being actively shared with OEMs, who have been notified and strongly recommended to deploy those patches on released devices as soon as possible. Please contact the device manufacturer for information on the patching status of released devices.
| Public ID | Security Rating | CVSS Rating | Technology Area | Date Reported |
|---|---|---|---|---|
| CVE-2026-25268 | Critical | High | WLAN Host | Internal |
| CVE-2026-21379 | High | High | Windows Compute | Internal |
| CVE-2026-21383 | High | High | HLOS | Internal |
| CVE-2026-25271 | High | High | DSP Service | 11/17/2025 |
CVE-2026-25268
| CVE ID | CVE-2026-25268 |
| Title | Stack-based Buffer Overflow in WLAN Host |
| Description | Memory Corruption when processing invalid HT40 channel layouts during dynamic channel switching operations. |
| Technology Area | WLAN Host |
| Vulnerability Type | CWE-121 Stack-based Buffer Overflow |
| Access Vector | Remote |
| Security Rating | Critical |
| CVSS Rating | High |
| CVSS Score | 8.8 |
| CVSS String | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
| Date Reported | Internal |
| Customer Notified Date | 2026/04/06 |
| Affected Chipsets* | 5G Fixed Wireless Access Platform, AR8035, CQ7790, CQ8725S, CSR8811, FastConnect 6700, FastConnect 6900, FastConnect 7800, FWA Gen 3 Ultra Platform, FWA Gen 5 Elite Platform, Immersive Home 214 Platform, Immersive Home 216 Platform, Immersive Home 316 Platform, Immersive Home 318 Platform, Immersive Home 3210 Platform, Immersive Home 326 Platform, IPQ5010, IPQ5028, IPQ5300, IPQ5302, IPQ5312, IPQ5332, IPQ6000, IPQ6010, IPQ6018, IPQ8076, IPQ8078, IPQ9008, IPQ9048, IPQ9554, IPQ9570, IPQ9574, Kobuk, Marina, Networking Pro 1200 Platform, Networking Pro 1210 Platform, Networking Pro 1610 Platform, Networking Pro 400 Platform, Networking Pro 600 Platform, Networking Pro 610 Platform, Networking Pro 800 Platform, Networking Pro 810 Platform, Orne, QCA0000, QCA4024, QCA6174A, QCA8075, QCA8080, QCA8081, QCA8082, QCA8084, QCA8085, QCA8101, QCA8102, QCA8111, QCA8112, QCA8337, QCA8384, QCA8385, QCA8386, QCA9888, QCA9889, QCC710, QCF8000, QCF8001, QCM5430, QCM6490, QCN5022, QCN5024, QCN5052, QCN5122, QCN5124, QCN5152, QCN5154, QCN5164, QCN5224, QCN6023, QCN6024, QCN6112, QCN6122, QCN6132, QCN6224, QCN6274, QCN6402, QCN6412, QCN6422, QCN6432, QCN9000, QCN9012, QCN9013, QCN9022, QCN9024, QCN9070, QCN9100, QCN9160, QCN9274, QFW7114, QFW7124, QFW7224, QMX82L, QMX85L, Qualcomm® Video Collaboration VC3 Platform, QXM8083, SAR2130P, SDX61, SDX65M, SDX81, Snapdragon 460 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon Auto 5G Modem-RF, Snapdragon X62 5G Modem-RF System, Snapdragon X65 5G Modem-RF System, Snapdragon X72 5G Modem-RF System, Snapdragon X75 5G Modem-RF System, SW-only, WCD9340, WCD9370, WCD9375, WCD9380, WCD9385, WCN3950, WCN3988, WCN6755, WCN7861, WCN7881, WSA8830, WSA8832, WSA8835 |
CVE-2026-21379
| CVE ID | CVE-2026-21379 |
| Title | Buffer Over-read in Windows Compute |
| Description | Memory Corruption when allocating memory with sizes that exceed the maximum allowed value. |
| Technology Area | Windows Compute |
| Vulnerability Type | CWE-126 Buffer Over-read |
| Access Vector | Local |
| Security Rating | High |
| CVSS Rating | High |
| CVSS Score | 7.8 |
| CVSS String | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Date Reported | Internal |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | AQT1000, Cologne, FastConnect 6200, FastConnect 6700, FastConnect 6800, FastConnect 6900, FastConnect 7800, IQX5121, IQX7181, QCA0000, QCA6391, QCA6420, QCA6430, QCM5430, QCM6490, Qualcomm® Video Collaboration VC3 Platform, SC8380XP, Snapdragon 7c+ Gen 3 Compute, Snapdragon 8c Compute Platform "Poipu Lite", Snapdragon 8c Compute Platform (SC8180XP-AD) "Poipu Lite", Snapdragon 8cx Compute Platform, Snapdragon 8cx Compute Platform "Poipu Pro", Snapdragon 8cx Gen 2 5G Compute Platform, Snapdragon 8cx Gen 2 5G Compute Platform "Poipu Pro", Snapdragon 8cx Gen 3 Compute Platform, WCD9340, WCD9341, WCD9370, WCD9375, WCD9378C, WCD9380, WCD9385, WSA8810, WSA8815, WSA8830, WSA8835, WSA8840, WSA8845, WSA8845H, X2000077, X2000086, X2000090, X2000092, X2000094, XG101002, XG101032, XG101039 |
CVE-2026-21383
| CVE ID | CVE-2026-21383 |
| Title | Reusing a Nonce, Key Pair in Encryption in HLOS |
| Description | Cryptographic Issue when using a static initialization vector for AES-GCM key wrapping, which requires a unique value for each call to ensure security. |
| Technology Area | HLOS |
| Vulnerability Type | CWE-323: Reusing a Nonce, Key Pair in Encryption |
| Access Vector | Local |
| Security Rating | High |
| CVSS Rating | High |
| CVSS Score | 7.1 |
| CVSS String | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N |
| Date Reported | Internal |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6900, FastConnect 7800, LeMans_AU_LGIT, LeMansAU, Pandeiro, QAM8255P, QAM8397P, QAM8797P, QAMSRV1H, QAMSRV1M, QCA6595AU, QCA6696, QCA6698AQ, QCA6797AQ, QCA8695AU, QDU1000, QDU1110, QDU1210, QDX1010, QDX1011, QLN1083BD, QLN1086BD, QPA1083BD, QPA1086BD, Qualcomm Dragonwing™ X100 Accelerator Card, QXM1093, QXM1094, QXM1095, QXM1096, SA7255P, SA7775P, SA8255P, SA8620P, SA8770P, SA9000P, SAR1165P, SAR2130P, Snapdragon AR1 Gen 1 Platform, Snapdragon AR1+ Gen 1 Platform, SRV1H, SRV1M, SXR2230P, SXR2250P, WCD9380, WCD9385, WCN3950, WCN7860, WCN7861, WSA8830, WSA8832, WSA8835, XRV7209, XRV9209 |
CVE-2026-25271
| CVE ID | CVE-2026-25271 |
| Title | Time-of-check Time-of-use (TOCTOU) Race Condition in DSP Service |
| Description | Memory Corruption when processing asynchronous input parameters due to improper handling of modified values between check and use. |
| Technology Area | DSP Service |
| Vulnerability Type | CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition |
| Access Vector | Local |
| Security Rating | High |
| CVSS Rating | High |
| CVSS Score | 7.8 |
| CVSS String | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
| Date Reported | 2025/11/17 |
| Customer Notified Date | 2026/04/06 |
| Affected Chipsets* | Cologne, FastConnect 6900, FastConnect 7800, IQX5121, IQX7181, QCA0000, SC8380XP, WCD9378C, WCD9380, WCD9385, WSA8840, WSA8845, WSA8845H, X2000077, X2000086, X2000090, X2000092, X2000094, XG101002, XG101032, XG101039 |
*The list of affected chipsets may not be complete. For latest information, device OEMs can contact QTI directly at www.qualcomm.com/support.
Open Source Software Issues
The tables below summarize security vulnerabilities that were addressed through open source software
This table lists high impact security vulnerabilities. Patches are being actively shared with OEMs, who have been notified and strongly recommended to deploy those patches on released devices as soon as possible. Please contact the device manufacturer for information on the patching status of released devices.
| Public ID | Security Rating | CVSS Rating | Technology Area | Date Reported |
|---|
This table lists moderate security vulnerabilities. OEMs have been notified and encouraged to patch these issues.
| Public ID | Security Rating | CVSS Rating | Technology Area | Date Reported |
|---|---|---|---|---|
| CVE-2025-59615 | Medium | Medium | Computer Vision | 07/24/2025 |
| CVE-2025-59616 | Medium | Medium | Computer Vision | 07/20/2025 |
| CVE-2025-59617 | Medium | Medium | Computer Vision | 08/04/2025 |
| CVE-2026-21368 | Medium | Medium | Camera Driver | 07/31/2025 |
| CVE-2026-21369 | Medium | Medium | Camera Driver | 07/23/2025 |
| CVE-2026-21370 | Medium | Medium | Camera Driver | 08/04/2025 |
| CVE-2026-21384 | Medium | Medium | Camera Driver | 08/04/2025 |
CVE-2025-59615
| CVE ID | CVE-2025-59615 |
| Title | Use After Free in Computer Vision |
| Description | Memory Corruption when invoking device input/output control operations for mapping and unmapping persistent memory buffers due to improper synchronization. |
| Technology Area | Computer Vision |
| Vulnerability Type | CWE-416 Use After Free |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 6.6 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L |
| Date Reported | 2025/07/24 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6700, FastConnect 6900, FastConnect 7800, Molokai, Orne, Pandeiro, QCM5430, QCM6490, QLN1083BD, QLN1086BD, QMP1000, QMP2001, QPA1083BD, QPA1086BD, Qualcomm® Video Collaboration VC3 Platform, QXM1093, QXM1094, QXM1095, QXM1096, SC8380XP, SD865 5G, SM6850, SM8845P, Snapdragon 460 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 8 Elite Gen 5, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, SXR2230P, SXR2250P, SXR2330P, SXR2350P, WCD9370, WCD9375, WCD9378, WCD9380, WCD9385, WCD9395, WCN3950, WCN3988, WCN6450, WCN7760, WCN7860, WCN7861, WCN7880, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, WSA8850, WSA8850W, WSA8855C, XRV7209, XRV9209 |
| Patch** |
CVE-2025-59616
| CVE ID | CVE-2025-59616 |
| Title | Use After Free in Computer Vision |
| Description | Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory. |
| Technology Area | Computer Vision |
| Vulnerability Type | CWE-416 Use After Free |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 6.6 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L |
| Date Reported | 2025/07/20 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6700, FastConnect 6900, FastConnect 7800, Molokai, Orne, Pandeiro, QCM5430, QCM6490, QMP1000, QMP2001, Qualcomm® Video Collaboration VC3 Platform, SC8380XP, SD865 5G, SM6850, SM8845P, Snapdragon 460 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 8 Elite Gen 5, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, SXR2230P, SXR2250P, WCD9370, WCD9375, WCD9378, WCD9380, WCD9385, WCD9395, WCN3950, WCN3988, WCN6450, WCN7760, WCN7860, WCN7861, WCN7880, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, WSA8850, WSA8850W, WSA8855C |
| Patch** |
CVE-2025-59617
| CVE ID | CVE-2025-59617 |
| Title | Use After Free in Computer Vision |
| Description | Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input. |
| Technology Area | Computer Vision |
| Vulnerability Type | CWE-416 Use After Free |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 6.6 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L |
| Date Reported | 2025/08/04 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6700, FastConnect 6900, FastConnect 7800, Molokai, Orne, Pandeiro, QCM5430, QCM6490, QMP1000, QMP2001, Qualcomm® Video Collaboration VC3 Platform, SC8380XP, SD865 5G, SM6850, SM8845P, Snapdragon 460 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 8 Elite Gen 5, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, SXR2230P, SXR2250P, WCD9370, WCD9375, WCD9378, WCD9380, WCD9385, WCD9395, WCN3950, WCN3988, WCN6450, WCN7760, WCN7860, WCN7861, WCN7880, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, WSA8850, WSA8850W, WSA8855C |
| Patch** |
CVE-2026-21368
| CVE ID | CVE-2026-21368 |
| Title | Out-of-bounds Write in Camera Driver |
| Description | Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks. |
| Technology Area | Camera Driver |
| Vulnerability Type | CWE-787: Out-of-bounds Write |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 5.3 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L |
| Date Reported | 2025/07/31 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6700, FastConnect 6900, FastConnect 7800, G3x Gen 2, IQ9 Series Platform, LeMans_AU_LGIT, LeMansAU, Netrani, Pandeiro, QAM8255P, QAMSRV1H, QAMSRV1M, QCA6595, QCA6595AU, QCA6678AQ, QCA6698AQ, QCA6698AU, QCA6797AQ, QCM4490, QCM8838, QCS4490, QCS8550, QLN1083BD, QLN1086BD, QPA1083BD, QPA1086BD, QXM1093, QXM1094, QXM1095, QXM1096, SA7255P, SA7775P, SA8255P, SA8620P, SA8770P, SA9000P, SAR2130P, SC8380XP, SD 8 Gen1 5G, SD865 5G, SDR753, SM7435, SM7525, SM7550, SM7550P, SM8550P, Snapdragon 4 Gen 2 Mobile Platform, Snapdragon 460 Mobile Platform, Snapdragon 6 Gen 1 Mobile Platform, Snapdragon 6 Gen 3 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 7 Gen 1 Mobile Platform, Snapdragon 8 Elite, Snapdragon 8 Gen 1 Mobile Platform, Snapdragon 8 Gen 2 Mobile Platform, Snapdragon 8+ Gen 2 Mobile Platform, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, SRV1H, SRV1M, SXR2230P, SXR2330P, SXR2350P, WCD9370, WCD9371, WCD9375, WCD9378, WCD9380, WCD9385, WCD9390, WCD9395, WCN3950, WCN3988, WCN6450, WCN6650, WCN6755, WCN7860, WCN7861, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, X1E80100, XRV7209, XRV9209 |
| Patch** |
CVE-2026-21369
| CVE ID | CVE-2026-21369 |
| Title | Out-of-bounds Write in Camera Driver |
| Description | Memory Corruption when handling flash commands due to outdated LED count values being used after userspace modification. |
| Technology Area | Camera Driver |
| Vulnerability Type | CWE-787: Out-of-bounds Write |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 5.3 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L |
| Date Reported | 2025/07/23 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6200, FastConnect 6700, FastConnect 6900, FastConnect 7800, G1 Gen 1, G3x Gen 2, IQ9 Series Platform, Kalpeni, LeMans_AU_LGIT, LeMansAU, Pandeiro, QAM8255P, QAM8295P, QAMSRV1H, QAMSRV1M, QCA6574AU, QCA6595, QCA6688AQ, QCA6696, QCA6698AQ, QCA6797AQ, QCA8695AU, QCM2290, QCM4325, QCM4490, QCM5430, QCM6490, QCM8838, QCS2290, QCS4290, QCS4490, QLN1083BD, QLN1086BD, QPA1083BD, QPA1086BD, Qualcomm® Video Collaboration VC3 Platform, QXM1093, QXM1094, QXM1095, QXM1096, SA6155P, SA7255P, SA7775P, SA8155P, SA8195P, SA8255P, SA8295P, SA8620P, SA8770P, SA9000P, SAR2130P, SC8380XP, SD662, SD865 5G, SDR753, SM6225P, SM7525, SM7550, SM7550P, SM8550P, Snapdragon 4 Gen 1 Mobile Platform, Snapdragon 460 Mobile Platform, Snapdragon 480 5G Mobile Platform, Snapdragon 480+ 5G Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 680 4G Mobile Platform, Snapdragon 685 4G Mobile Platform, Snapdragon 695 5G Mobile Platform, Snapdragon 8 Elite, Snapdragon 8 Gen 2 Mobile Platform, Snapdragon 8+ Gen 2 Mobile Platform, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, Snapdragon® Wear Elite platform, SRV1H, SRV1M, SXR2230P, SXR2330P, SXR2350P, Themisto, WCD9370, WCD9371, WCD9375, WCD9378, WCD9380, WCD9385, WCD9390, WCD9395, WCN3910, WCN3950, WCN3988, WCN6450, WCN6650, WCN6755, WCN7860, WCN7861, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, X1E80100, XRV7209, XRV9209 |
| Patch** |
CVE-2026-21370
| CVE ID | CVE-2026-21370 |
| Title | Out-of-bounds Write in Camera Driver |
| Description | Memory Corruption when validating input batch size and buffer plane count exceeds maximum allowed values. |
| Technology Area | Camera Driver |
| Vulnerability Type | CWE-787: Out-of-bounds Write |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 5.3 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L |
| Date Reported | 2025/08/04 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6700, FastConnect 6900, FastConnect 7800, G3x Gen 2, IQ9 Series Platform, LeMans_AU_LGIT, LeMansAU, Netrani, Pandeiro, QAM8255P, QAMSRV1H, QAMSRV1M, QCA6595, QCA6595AU, QCA6678AQ, QCA6698AQ, QCA6698AU, QCA6797AQ, QCM4490, QCM8838, QCS4490, QCS8550, QLN1083BD, QLN1086BD, QPA1083BD, QPA1086BD, QXM1093, QXM1094, QXM1095, QXM1096, SA7255P, SA7775P, SA8255P, SA8620P, SA8770P, SA9000P, SAR2130P, SC8380XP, SD 8 Gen1 5G, SD865 5G, SDR753, SM7435, SM7525, SM7550, SM7550P, SM8550P, Snapdragon 4 Gen 2 Mobile Platform, Snapdragon 460 Mobile Platform, Snapdragon 6 Gen 1 Mobile Platform, Snapdragon 6 Gen 3 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 7 Gen 1 Mobile Platform, Snapdragon 8 Elite, Snapdragon 8 Gen 1 Mobile Platform, Snapdragon 8 Gen 2 Mobile Platform, Snapdragon 8+ Gen 2 Mobile Platform, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, SRV1H, SRV1M, SXR2230P, SXR2330P, SXR2350P, WCD9370, WCD9371, WCD9375, WCD9378, WCD9380, WCD9385, WCD9390, WCD9395, WCN3950, WCN3988, WCN6450, WCN6650, WCN6755, WCN7860, WCN7861, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, X1E80100, XRV7209, XRV9209 |
| Patch** |
CVE-2026-21384
| CVE ID | CVE-2026-21384 |
| Title | Out-of-bounds Write in Camera Driver |
| Description | Memory Corruption when updating prepared commands with invalid port indices based on user space input exceeds supported read client limits. |
| Technology Area | Camera Driver |
| Vulnerability Type | CWE-787: Out-of-bounds Write |
| Access Vector | Local |
| Security Rating | Medium |
| CVSS Rating | Medium |
| CVSS Score | 5.3 |
| CVSS String | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L |
| Date Reported | 2025/08/04 |
| Customer Notified Date | 2026/01/05 |
| Affected Chipsets* | FastConnect 6700, FastConnect 6900, FastConnect 7800, LeMans_AU_LGIT, LeMansAU, Netrani, Pandeiro, QAM8255P, QAMSRV1H, QAMSRV1M, QCA6595, QCA6595AU, QCA6678AQ, QCA6698AQ, QCA6698AU, QCA6797AQ, QCM4490, QCM5430, QCM6490, QCM8838, QCS4490, QCS8550, QLN1083BD, QLN1086BD, QPA1083BD, QPA1086BD, Qualcomm® Video Collaboration VC3 Platform, QXM1093, QXM1094, QXM1095, QXM1096, SA7255P, SA7775P, SA8255P, SA8620P, SA8770P, SA9000P, SAR2130P, SC8380XP, SD 8 Gen1 5G, SD865 5G, SDR753, SM7435, Snapdragon 4 Gen 2 Mobile Platform, Snapdragon 460 Mobile Platform, Snapdragon 6 Gen 1 Mobile Platform, Snapdragon 6 Gen 3 Mobile Platform, Snapdragon 662 Mobile Platform, Snapdragon 7 Gen 1 Mobile Platform, Snapdragon 8 Elite, Snapdragon 8 Gen 1 Mobile Platform, Snapdragon AR1 Gen 1 Platform, Snapdragon XR2 5G Platform, Snapdragon XR2+ Gen 1 Platform, SRV1H, SRV1M, SXR2230P, SXR2330P, SXR2350P, WCD9370, WCD9375, WCD9380, WCD9385, WCN3950, WCN3988, WCN6755, WCN7860, WCN7861, WCN7881, WSA8810, WSA8815, WSA8830, WSA8832, WSA8835, WSA8840, WSA8845, WSA8845H, XRV7209, XRV9209 |
| Patch** |
* The list of affected chipsets may not be complete. For latest information, device OEMs can contact QTI directly at www.qualcomm.com/support.
** Data is generated only at the time of bulletin creation
Industry Coordination
Security ratings of issues included in Android security bulletins and these bulletins match in the most common scenarios but may differ in some cases due to one of the following reasons:
- Consideration of security protections such as SELinux not enforced on some platforms
- Differences in assessment of some specific scenarios that involves local denial of service or privilege escalation vulnerabilities in the high level OS kernel
All Qualcomm products mentioned herein are products of Qualcomm Technologies, Inc. and/or its subsidiaries.
Qualcomm is a trademark of Qualcomm Incorporated, registered in the United States and other countries. Other product and brand names may be trademarks or registered trademarks of their respective owners.
This technical data may be subject to U.S. and international export, re-export, or transfer (“export”) laws. Diversion contrary to U.S. and international law is strictly prohibited.
Qualcomm Technologies, Inc.
San Diego, CA 92121
U.S.A.
© 2022 Qualcomm Technologies, Inc. and/or its subsidiaries. All rights reserved.
