CVE-2025-59610
MEDIUMTime-of-check Time-of-use (TOCTOU) Race Condition in Camera Driver
Title source: cnaDescription
Memory Corruption when processing IOCTL requests with mismatched API versions due to concurrent modification of user-space buffer.
References (1)
Core 1
Core References
Scores
CVSS v3
6.4
EPSS
0.0006
EPSS Percentile
0.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-367
Status
published
Products (50)
qualcomm/5g_fixed_wireless_access_platform_firmware
qualcomm/c-v2x_9150_firmware
qualcomm/cq7790_firmware
qualcomm/cq8725s_firmware
qualcomm/csra6620_firmware
qualcomm/csra6640_firmware
qualcomm/csrb31024_firmware
qualcomm/fastconnect_6200_firmware
qualcomm/fastconnect_6700_firmware
qualcomm/fastconnect_6800_firmware
... and 40 more
Published
Jun 01, 2026
Tracked Since
Jun 02, 2026