彙總 Qualcomm 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
歷史漏洞主要涉及 緩衝區溢位與記憶體損壞 等問題,部分漏洞可能導致 應用程式崩潰,並影響 軟體部署與生產負載 相關場景。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2026-25277 | Memory corruption while using Strongbox due to buffer overflow. | [email protected] | 8.8 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-25276 | Memory corruption while using Strongbox due to missing bounds check. | [email protected] | 8.8 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-25260 | Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications. | [email protected] | 7.8 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-25259 | Memory corruption while processing multiple IOCTL command for escape operations. | [email protected] | 7.8 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-25258 | Memory corruption while processing IOCTL calls for escape operations. | [email protected] | 7.8 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24092 | Memory Corruption when processing fastboot commands to set display mode. | [email protected] | 7.2 | 0.03% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24091 | Memory corruption while processing fastboot commands with improperly formatted input. | [email protected] | 7.2 | 0.03% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24090 | Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow. | [email protected] | 7.1 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24089 | Memory corruption while processing fastboot commands with invalid input. | [email protected] | 7.2 | 0.03% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24088 | Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader. | [email protected] | 8.2 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24087 | Memory corruption while processing fastboot OEM commands. | [email protected] | 7.2 | 0.03% | 2026-06-01 | 2026-06-02 |
| CVE-2026-24085 | Memory Corruption when processing display command line information due to improper initialization of a variable. | [email protected] | 7.2 | 0.02% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59614 | Memory Corruption when sending random number generator command with insufficient output buffer size. | [email protected] | 6.7 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59613 | Memory Corruption when output buffer size is smaller than input buffer size during data copying operation. | [email protected] | 6.7 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59612 | Memory corruption in windows drivers while sending incorrect trusted application request | [email protected] | 6.7 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59611 | Memory corruption in diagnostic services due to absence of input validation | [email protected] | 6.7 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59610 | Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer. | [email protected] | 6.4 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59609 | Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length. | [email protected] | 5.5 | 0.03% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59606 | Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization. | [email protected] | 7.8 | 0.01% | 2026-06-01 | 2026-06-02 |
| CVE-2025-59605 | Memory Corruption when processing device identifier strings that exceed the expected maximum length. | [email protected] | 7.8 | 0.01% | 2026-06-01 | 2026-06-02 |