Memory corruption while using alignments for memory allocation.
総合評価: CVE-2026-21385 は在野での悪用が確認済み(78.1/100)。CVSS 深刻度は高。悪用される可能性が高い(EPSS 1.07%、60 パーセンタイル) 根拠: CISA KEV に登録(追加日 2026-03-03)。Qualcomm / Multiple Chipsets が対象で、弱点分類 CWE-190の悪用が確認されています。未認証でリモート管理権限を奪取されるリスクが極めて高い。 推奨対応: CISA の対応期限を過ぎています。緊急のパッチ適用を最優先に検討してください。
リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。
: Qualcomm Multiple Chipsets Memory Corruption Vulnerability · CISA KEV の詳細
: 2026-03-03
: 2026-03-24
: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。
| # | 日付 | 旧 EPSS スコア | 新 EPSS スコア | Δ(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.22% | 1.07% | +0.84% |
| 2 | 2026-03-21 | 0.38% | 0.22% | -0.16% |
| 3 | 2026-03-08 | — | 0.38% | — |
EPSS の全履歴 (全 6 件)
この CVE の CVSS 指標。
| ベーススコア | バージョン | 深刻度 | ベクトル | 悪用しやすさ | 影響 | スコアの出典 |
|---|---|---|---|---|---|---|
| 7.8 | 3.1 | HIGH |
|
1.8 | 5.9 | [email protected] |
| ベンダー | 製品 | バージョン | 生の CPE |
|---|---|---|---|
| qualcomm | sm7675p_firmware | — | cpe:2.3:o:qualcomm:sm7675p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8475p_firmware | — | cpe:2.3:o:qualcomm:sm8475p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8550p_firmware | — | cpe:2.3:o:qualcomm:sm8550p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8635_firmware | — | cpe:2.3:o:qualcomm:sm8635_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8635p_firmware | — | cpe:2.3:o:qualcomm:sm8635p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8650q_firmware | — | cpe:2.3:o:qualcomm:sm8650q_firmware:-:*:*:*:*:*:*:* |
| qualcomm | sm8750p_firmware | — | cpe:2.3:o:qualcomm:sm8750p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | smart_audio_400_platform_firmware | — | cpe:2.3:o:qualcomm:smart_audio_400_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | smart_display_200_platform_firmware | — | cpe:2.3:o:qualcomm:smart_display_200_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_4_gen_1_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_4_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_4_gen_2_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_4_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_429_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_429_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_460_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_460_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_480\+_5g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_480\+_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_480_5g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_480_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_6_gen_1_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_6_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_6_gen_3_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_6_gen_3_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_6_gen_4_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_6_gen_4_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_625_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_625_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_626_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_626_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_660_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_660_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_662_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_662_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_680_4g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_680_4g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_685_4g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_685_4g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_690_5g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_690_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_695_5g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_695_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_7\+_gen_2_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_7\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_7_gen_1_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_7_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_778g\+_5g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_778g\+_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_778g_5g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_778g_5g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_782g_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_782g_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_7c\+_gen_3_compute_firmware | — | cpe:2.3:o:qualcomm:snapdragon_7c\+_gen_3_compute_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_7s_gen_3_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_7s_gen_3_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8\+_gen_1_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8\+_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8\+_gen_2_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8\+_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8_elite_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8_elite_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8_elite_gen_5_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8_elite_gen_5_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8_gen_1_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8_gen_1_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8_gen_2_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8_gen_2_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | snapdragon_8_gen_3_mobile_platform_firmware | — | cpe:2.3:o:qualcomm:snapdragon_8_gen_3_mobile_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | 5g_fixed_wireless_access_platform_firmware | — | cpe:2.3:o:qualcomm:5g_fixed_wireless_access_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | apq8098_firmware | — | cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:* |
| qualcomm | ar8031_firmware | — | cpe:2.3:o:qualcomm:ar8031_firmware:-:*:*:*:*:*:*:* |
| qualcomm | ar8035_firmware | — | cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:* |
| qualcomm | c-v2x_9150_firmware | — | cpe:2.3:o:qualcomm:c-v2x_9150_firmware:-:*:*:*:*:*:*:* |
| qualcomm | csra6620_firmware | — | cpe:2.3:o:qualcomm:csra6620_firmware:-:*:*:*:*:*:*:* |
| qualcomm | csra6640_firmware | — | cpe:2.3:o:qualcomm:csra6640_firmware:-:*:*:*:*:*:*:* |
| qualcomm | fastconnect_6200_firmware | — | cpe:2.3:o:qualcomm:fastconnect_6200_firmware:-:*:*:*:*:*:*:* |
| qualcomm | fastconnect_6700_firmware | — | cpe:2.3:o:qualcomm:fastconnect_6700_firmware:-:*:*:*:*:*:*:* |
| qualcomm | fastconnect_6800_firmware | — | cpe:2.3:o:qualcomm:fastconnect_6800_firmware:-:*:*:*:*:*:*:* |
| qualcomm | fastconnect_6900_firmware | — | cpe:2.3:o:qualcomm:fastconnect_6900_firmware:-:*:*:*:*:*:*:* |
| qualcomm | fastconnect_7800_firmware | — | cpe:2.3:o:qualcomm:fastconnect_7800_firmware:-:*:*:*:*:*:*:* |
| qualcomm | flight_rb5_5g_platform_firmware | — | cpe:2.3:o:qualcomm:flight_rb5_5g_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | fsm100_platform_firmware | — | cpe:2.3:o:qualcomm:fsm100_platform_firmware:-:*:*:*:*:*:*:* |
| qualcomm | g1_gen_1_firmware | — | cpe:2.3:o:qualcomm:g1_gen_1_firmware:-:*:*:*:*:*:*:* |
| qualcomm | g2_gen_1_firmware | — | cpe:2.3:o:qualcomm:g2_gen_1_firmware:-:*:*:*:*:*:*:* |
| qualcomm | iq-615_firmware | — | cpe:2.3:o:qualcomm:iq-615_firmware:-:*:*:*:*:*:*:* |
| qualcomm | iq-8275_firmware | — | cpe:2.3:o:qualcomm:iq-8275_firmware:-:*:*:*:*:*:*:* |
| qualcomm | iq-8300_firmware | — | cpe:2.3:o:qualcomm:iq-8300_firmware:-:*:*:*:*:*:*:* |
| qualcomm | iq-9075_firmware | — | cpe:2.3:o:qualcomm:iq-9075_firmware:-:*:*:*:*:*:*:* |
| qualcomm | iq-9100_firmware | — | cpe:2.3:o:qualcomm:iq-9100_firmware:-:*:*:*:*:*:*:* |
| qualcomm | lemans_au_lgit_firmware | — | cpe:2.3:o:qualcomm:lemans_au_lgit_firmware:-:*:*:*:*:*:*:* |
| qualcomm | lemansau_firmware | — | cpe:2.3:o:qualcomm:lemansau_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9250_firmware | — | cpe:2.3:o:qualcomm:mdm9250_firmware:-:*:*:*:*:*:*:* |
| qualcomm | mdm9628_firmware | — | cpe:2.3:o:qualcomm:mdm9628_firmware:-:*:*:*:*:*:*:* |
| qualcomm | milos_firmware | — | cpe:2.3:o:qualcomm:milos_firmware:-:*:*:*:*:*:*:* |
| qualcomm | monaco_iot_firmware | — | cpe:2.3:o:qualcomm:monaco_iot_firmware:-:*:*:*:*:*:*:* |
| qualcomm | netrani_firmware | — | cpe:2.3:o:qualcomm:netrani_firmware:-:*:*:*:*:*:*:* |
| qualcomm | orne_firmware | — | cpe:2.3:o:qualcomm:orne_firmware:-:*:*:*:*:*:*:* |
| qualcomm | palawan25_firmware | — | cpe:2.3:o:qualcomm:palawan25_firmware:-:*:*:*:*:*:*:* |
| qualcomm | pandeiro_firmware | — | cpe:2.3:o:qualcomm:pandeiro_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qam8255p_firmware | — | cpe:2.3:o:qualcomm:qam8255p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qam8295p_firmware | — | cpe:2.3:o:qualcomm:qam8295p_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qamsrv1h_firmware | — | cpe:2.3:o:qualcomm:qamsrv1h_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qamsrv1m_firmware | — | cpe:2.3:o:qualcomm:qamsrv1m_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca2066_firmware | — | cpe:2.3:o:qualcomm:qca2066_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6174a_firmware | — | cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6391_firmware | — | cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564a_firmware | — | cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:* |
| qualcomm | qca6564au_firmware | — | cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:* |
| URL | タグ |
|---|---|
| https://docs.qualcomm.com/product/publicresources/securitybulletin/march-2026-bulletin.html | Patch Vendor Advisory |
| https://source.android.com/docs/security/bulletin/2026/2026-03-01 | Vendor Advisory |
| https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-21385 | US Government Resource |