Description

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations.

INFO

Published Date :

2026-04-06T15:33:48.447Z

Last Modified :

2026-04-07T03:55:49.327Z

Source :

qualcomm
AFFECTED PRODUCTS

The following products are affected by CVE-2026-21372 vulnerability.

Vendors Products
Qualcomm
  • Cologne
  • Cologne Firmware
  • Fastconnect 6700
  • Fastconnect 6700 Firmware
  • Fastconnect 6900
  • Fastconnect 6900 Firmware
  • Fastconnect 7800
  • Fastconnect 7800 Firmware
  • Qcm5430
  • Qcm5430 Firmware
  • Qcm6490
  • Qcm6490 Firmware
  • Snapdragon
  • Snapdragon 460 Mobile Platform
  • Snapdragon 460 Mobile Platform Firmware
  • Snapdragon 662 Mobile Platform
  • Snapdragon 662 Mobile Platform Firmware
  • Snapdragon 7c\+ Gen 3 Compute
  • Snapdragon 7c\+ Gen 3 Compute Firmware
  • Video Collaboration Vc3 Platform
  • Video Collaboration Vc3 Platform Firmware
  • Wcd9370
  • Wcd9370 Firmware
  • Wcd9375
  • Wcd9375 Firmware
  • Wcd9378c
  • Wcd9378c Firmware
  • Wcd9380
  • Wcd9380 Firmware
  • Wcd9385
  • Wcd9385 Firmware
  • Wcn3950
  • Wcn3950 Firmware
  • Wcn3988
  • Wcn3988 Firmware
  • Wsa8840
  • Wsa8840 Firmware
  • Wsa8845
  • Wsa8845 Firmware
  • Wsa8845h
  • Wsa8845h Firmware
  • X2000077
  • X2000077 Firmware
  • X2000086
  • X2000086 Firmware
  • X2000090
  • X2000090 Firmware
  • X2000092
  • X2000092 Firmware
  • X2000094
  • X2000094 Firmware
  • Xg101002
  • Xg101002 Firmware
  • Xg101032
  • Xg101032 Firmware
  • Xg101039
  • Xg101039 Firmware
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-21372.

URL Resource
https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact