Qualcomm Snapdragon
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Qualcomm Snapdragon.
By the Year
In 2026 there have been 46 vulnerabilities in Qualcomm Snapdragon with an average score of 7.3 out of ten. Last year, in 2025 Snapdragon had 103 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Snapdragon in 2026 could surpass last years number. Last year, the average CVE base score was greater by 0.31
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 46 | 7.31 |
| 2025 | 103 | 7.61 |
| 2024 | 1 | 7.80 |
| 2023 | 6 | 8.23 |
| 2022 | 52 | 7.58 |
| 2021 | 227 | 7.67 |
| 2020 | 167 | 0.00 |
| 2019 | 147 | 0.00 |
| 2018 | 183 | 0.00 |
It may take a day or so for new Snapdragon vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Qualcomm Snapdragon Security Vulnerabilities
Qualcomm Memory Corruption via Alignment Allocation
CVE-2026-21385
7.8 - High
- March 02, 2026
Memory corruption while using alignments for memory allocation.
Integer Overflow or Wraparound
Qualcomm Memory Corruption via Nonstandard Buffer Address
CVE-2025-59603
7.8 - High
- March 02, 2026
Memory Corruption when processing invalid user address with nonstandard buffer address.
Memory Corruption
Memory Corruption via unchecked buffer overflow in Qualcomm component
CVE-2025-59600
7.8 - High
- March 02, 2026
Memory Corruption when adding user-supplied data without checking available buffer space.
Buffer Over-read
Memory Corruption via IOCTL in Qualcomm driver under concurrent access
CVE-2025-47386
7.8 - High
- March 02, 2026
Memory Corruption while invoking IOCTL calls when concurrent access to shared buffer occurs.
Dangling pointer
Qualcomm TEE Memory Corruption via Privilege Escalation
CVE-2025-47385
7.8 - High
- March 02, 2026
Memory Corruption when accessing trusted execution environment without proper privilege check.
Register Interface Allows Software Access to Sensitive Data or Security Settings
Transient DoS via MAC Config ID overflow (Qualcomm)
CVE-2025-47384
6.5 - Medium
- March 02, 2026
Transient DOS when MAC configures config id greater than supported maximum value.
assertion failure
Qualcomm VoWiFi Weak Config Causing Crypto Issue (CVE-2025-47383)
CVE-2025-47383
7.2 - High
- March 02, 2026
Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE.
Missing Cryptographic Step
Qualcomm IOCTL Shared Buffer Concurrency Memory Corruption
CVE-2025-47381
7.8 - High
- March 02, 2026
Memory Corruption while processing IOCTL calls when concurrent access to shared buffer occurs.
Dangling pointer
Qualcomm Snapdragon Shared Buffer Memory Corruption
CVE-2025-47379
7.8 - High
- March 02, 2026
Memory Corruption when concurrent access to shared buffer occurs due to improper synchronization between assignment and deallocation of buffer resources.
Dangling pointer
Qualcomm HLOS Boot Loader Crypto Issue via Shared VM Ref
CVE-2025-47378
7.1 - High
- March 02, 2026
Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain.
Exposure of Sensitive System Information to an Unauthorized Control Sphere
Qualcomm Driver IOCTL Buffer Use-After-Free (CVE-2025-47377)
CVE-2025-47377
7.8 - High
- March 02, 2026
Memory Corruption when accessing a buffer after it has been freed while processing IOCTL calls.
Dangling pointer
Qualcomm Driver Concurrent IOCTL Shared Buffer Mem Corruption
CVE-2025-47376
7.8 - High
- March 02, 2026
Memory Corruption when concurrent access to shared buffer occurs during IOCTL calls.
Dangling pointer
Qualcomm Kernel Driver: Concurrent IOCTLs Lead to Memory Corruption
CVE-2025-47375
7.8 - High
- March 02, 2026
Memory corruption while handling different IOCTL calls from the user-space simultaneously.
Dangling pointer
Qualcomm TEE memory corruption via TA length bypass
CVE-2025-47373
7.8 - High
- March 02, 2026
Memory Corruption when accessing buffers with invalid length during TA invocation.
Memory Corruption
Transient DoS via invalid LTE RLC packet on Qualcomm UE
CVE-2025-47371
6.5 - Medium
- March 02, 2026
Transient DOS when an LTE RLC packet with invalid TB is received by UE.
assertion failure
Transient DoS via Oversize Auth IE in 802.11 Frame
CVE-2025-47402
6.5 - Medium
- February 02, 2026
Transient DOS when processing a received frame with an excessively large authentication information element.
Buffer Over-read
Memory Corruption in sensor driver IOCTL (invalid params)
CVE-2025-47399
7.8 - High
- February 02, 2026
Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters.
Classic Buffer Overflow
GPU Mem Buffer Dealloc Memory Corruption Vulnerability
CVE-2025-47398
7.8 - High
- February 02, 2026
Memory Corruption while deallocating graphics processing unit memory buffers due to improper handling of memory pointers.
Dangling pointer
GPU DMA Memory Corruption via Unchecked IOMMU Mapping Errors
CVE-2025-47397
7.8 - High
- February 02, 2026
Memory Corruption when initiating GPU memory mapping using scatter-gather lists due to unchecked IOMMU mapping errors.
Memory Leak
Android TEE Crypto Flaw via HLOS Input
CVE-2025-47366
7.1 - High
- February 02, 2026
Cryptographic issue when a Trusted Zone with outdated code is triggered by a HLOS providing incorrect input.
Exposed Dangerous Method or Function
Memory Corruption in Partition Offset Calculation
CVE-2025-47364
6.8 - Medium
- February 02, 2026
Memory corruption while calculating offset from partition start point.
Integer Overflow or Wraparound
Memory Corruption in Partition Size Calc (Oversized)
CVE-2025-47363
6.8 - Medium
- February 02, 2026
Memory corruption when calculating oversized partition sizes without proper checks.
Integer Overflow or Wraparound
Memory Corruption via Concurrent Free API misuse
CVE-2025-47359
7.8 - High
- February 02, 2026
Memory Corruption when multiple threads simultaneously access a memory free API.
Dangling pointer
Linux Kernel Mem_Free Exploit via User-Space Address Leak
CVE-2025-47358
7.8 - High
- February 02, 2026
Memory Corruption when user space address is modified and passed to mem_free API, causing kernel memory to be freed inadvertently.
Dangling pointer
Qualcomm Secure OS memory corruption on lowmemory launch
CVE-2025-47396
7.8 - High
- January 06, 2026
Memory corruption occurs when a secure application is launched on a device with insufficient memory.
Double-free
Qualcomm WLAN FW DoS via Vendor-Specific IE parse
CVE-2025-47395
6.5 - Medium
- January 06, 2026
Transient DOS while parsing a WLAN management frame with a Vendor Specific Information Element.
Buffer Over-read
Qualcomm Overlapping Buffer Copy Memory Corruption
CVE-2025-47394
7.8 - High
- January 06, 2026
Memory corruption when copying overlapping buffers during memory operations due to incorrect offset calculations.
Classic Buffer Overflow
Qualcomm kernel driver memory corruption CVE-2025-47393
CVE-2025-47393
7.8 - High
- January 06, 2026
Memory corruption when accessing resources in kernel driver.
out-of-bounds array index
Memory Corruption in Qualcomm DSP Driver via Unaligned Page Passing
CVE-2025-47388
7.8 - High
- January 06, 2026
Memory corruption while passing pages to DSP with an unaligned starting address.
Classic Buffer Overflow
Qualcomm Sensor Driver IOCTL Memory Corruption (CVE-2025-47380)
CVE-2025-47380
7.8 - High
- January 06, 2026
Memory corruption while preprocessing IOCTLs in sensors.
Untrusted Pointer Dereference
Qualcomm kernel driver info disclosure via weak hashed session ID IOCTL
CVE-2025-47369
5.5 - Medium
- January 06, 2026
Information disclosure when a weak hashed value is returned to userland code in response to a IOCTL call to obtain a session ID.
Information Disclosure
Concurrent Thread Access Causing Mem Corruption in Qualcomm
CVE-2025-47356
7.8 - High
- January 06, 2026
Memory Corruption when multiple threads concurrently access and modify shared resources.
Double-free
Memory corruption in QC QSEE secure logging cmd
CVE-2025-47346
7.8 - High
- January 06, 2026
Memory corruption while processing a secure logging command in the trusted application.
Memory Corruption
Memory corruption in Qualcomm QSEE Trusted Application
CVE-2025-47348
7.8 - High
- January 06, 2026
Memory corruption while processing identity credential operations in the trusted application.
Use of Uninitialized Variable
CVE-2025-47345: Crypto Flaw on Qualcomm License Encryption (Android)
CVE-2025-47345
8.4 - High
- January 06, 2026
Cryptographic issue may occur while encrypting license data.
Reusing a Nonce, Key Pair in Encryption
Qualcomm Snapdragon Video Engine: Memory Corruption via Video Session Init
CVE-2025-47343
7.8 - High
- January 06, 2026
Memory corruption while processing a video session to set video parameters.
Untrusted Pointer Dereference
CVE-2025-47344: Memory Corruption in Qualcomm Sensor Utility
CVE-2025-47344
6.7 - Medium
- January 06, 2026
Memory corruption while handling sensor utility operations.
TOCTTOU
Qualcomm Snapdragon HDCP Deinit mem corruption
CVE-2025-47339
7.8 - High
- January 06, 2026
Memory corruption while deinitializing a HDCP session.
Dangling pointer
Qualcomm Memory Corruption in Sync Object during Concurrent Ops
CVE-2025-47337
6.7 - Medium
- January 06, 2026
Memory corruption while accessing a synchronization object during concurrent operations.
Dangling pointer
Qualcomm Sensor HAL memory corruption on register read
CVE-2025-47336
6.7 - Medium
- January 06, 2026
Memory corruption while performing sensor register read operations.
Dangling pointer
Qualcomm Clock Config Parser Memory Corruption
CVE-2025-47335
6.7 - Medium
- January 06, 2026
Memory corruption while parsing clock configuration data for a specific hardware type.
Classic Buffer Overflow
Qualcomm Camera driver: sharedbuffer memory corruption CVE202547334
CVE-2025-47334
6.7 - Medium
- January 06, 2026
Memory corruption while processing shared command buffer packet between camera userspace and kernel.
Classic Buffer Overflow
Qualcomm Crypto Driver: Buffer Mapping Memory Corruption
CVE-2025-47333
6.6 - Medium
- January 06, 2026
Memory corruption while handling buffer mapping operations in the cryptographic driver.
Dangling pointer
Qualcomm Config Call Memory Corruption
CVE-2025-47332
6.7 - Medium
- January 06, 2026
Memory corruption while processing a config call from userspace.
TOCTTOU
Qualcomm firmware info disclosure via event processing
CVE-2025-47331
6.1 - Medium
- January 06, 2026
Information disclosure while processing a firmware event.
Buffer Over-read
Qualcomm Video Firmware Parser DoS during Packet Handling
CVE-2025-47330
5.5 - Medium
- January 06, 2026
Transient DOS while parsing video packets received from the video firmware.
Buffer Over-read
Memory Corruption in JPEG IOCTL Handler of Device Driver
CVE-2025-47387
7.8 - High
- December 18, 2025
Memory Corruption when processing IOCTLs for JPEG data without verification.
Untrusted Pointer Dereference
Bootloader memory corruption via invalid firmware load (CVE-2025-47382)
CVE-2025-47382
7.8 - High
- December 18, 2025
Memory corruption while loading an invalid firmware in boot loader.
AuthZ
Memory Corruption in ELF Parser: Oversized Size Abuse
CVE-2025-47372
9 - Critical
- December 18, 2025
Memory Corruption when a corrupted ELF image with an oversized file size is read into a buffer without authentication.
Classic Buffer Overflow
Linux Kernel Concurrent mmap/unmap Memory Corruption CVE-2025-47350
CVE-2025-47350
7.8 - High
- December 18, 2025
Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application.
Dangling pointer
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Qualcomm Snapdragon or by Qualcomm? Click the Watch button to subscribe.
