cve detail

CVE-2026-21385

naam

Qualcomm Multiple Chipsets Memory Corruption Vulnerability

Multiple Qualcomm chipsets contain a memory corruption vulnerability while using alignments for memory allocation.

KEV

bekend misbruikt

EPSS

0,2%

percentiel

45%

vendor

Qualcomm

product

Multiple Chipsets

toegevoegd aan KEV

03 mrt 2026

due date

24 mrt 2026

ransomware

Unknown

CWE

CWE-190

EPSS datum

12 mei 2026

aanbevolen actie

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

notities

Please check with specific vendors (OEMs,) for information on patching status. For more information, please see: https://source.android.com/docs/security/bulletin/2026/2026-03-01 ; https://nvd.nist.gov/vuln/detail/CVE-2026-21385