CVE-2025-59616

MEDIUM

Qualcomm, Snapdragon - Use After Free in Computer Vision

Title source: rule
STIX 2.1

Description

Memory Corruption when processing multiple IOCTL calls with the same buffer file descriptor input due to accessing already freed memory.

Scores

CVSS v3 6.6
EPSS 0.0006
EPSS Percentile 0.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-416
Status published
Products (50)
qualcomm/fastconnect_6700_firmware
qualcomm/fastconnect_6900_firmware
qualcomm/fastconnect_7800_firmware
qualcomm/molokai_firmware
qualcomm/orne_firmware
qualcomm/pandeiro_firmware
qualcomm/qcm5430_firmware
qualcomm/qcm6490_firmware
qualcomm/qmp1000_firmware
qualcomm/qmp2001_firmware
... and 40 more
Published Jul 06, 2026
Tracked Since Jul 07, 2026