CVE-2026-21381

Published Apr 6, 2026

Last updated 6 days ago

CVSS high 7.6

Overview

Description
Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.
Source
product-security@qualcomm.com
NVD status
Analyzed
Products
ar8035_firmware, cologne_firmware, fastconnect_6200_firmware, fastconnect_6700_firmware, fastconnect_6900_firmware, fastconnect_7800_firmware, fwa_gen_3_ultra_firmware, g2_gen_1_firmware, milos_firmware, netrani_firmware, orne_firmware, palawan25_firmware, pandeiro_firmware, qca6391_firmware, qca6698au_firmware, qca6777aq_firmware, qca6787aq_firmware, qca6797aq_firmware, qca8081_firmware, qca8337_firmware, qcc2073_firmware, qcc2076_firmware, qcc710_firmware, qcn6224_firmware, qcn6274_firmware, qcn9011_firmware, qcn9012_firmware, qcs8550_firmware, qfw7114_firmware, qfw7124_firmware, qln1083bd_firmware, qln1086bd_firmware, qmp1000_firmware, qpa1083bd_firmware, qpa1086bd_firmware, qxm1083_firmware, qxm1086_firmware, qxm1093_firmware, qxm1094_firmware, qxm1095_firmware, qxm1096_firmware, sar1165p_firmware, sar2130p_firmware, sc8380xp_firmware, sm6650p_firmware, sm7435_firmware, sm7635p_firmware, sm7675_firmware, sm7675p_firmware, sm8635_firmware, sm8635p_firmware, sm8650q_firmware, sm8750p_firmware, snapdragon_6_gen_1_mobile_platform_firmware, snapdragon_6_gen_3_mobile_platform_firmware, snapdragon_6_gen_4_mobile_platform_firmware, snapdragon_7s_gen_3_mobile_platform_firmware, snapdragon_8_elite_firmware, snapdragon_8_elite_gen_5_firmware, snapdragon_8_gen_3_mobile_platform_firmware, snapdragon_ar1_gen_1_platform_firmware, snapdragon_ar1\+_gen_1_platform_firmware, snapdragon_x72_5g_modem-rf_system_firmware, snapdragon_x75_5g_modem-rf_system_firmware, sxr2230p_firmware, sxr2250p_firmware, sxr2330p_firmware, sxr2350p_firmware, wcd9340_firmware, wcd9370_firmware, wcd9375_firmware, wcd9378_firmware, wcd9378c_firmware, wcd9380_firmware, wcd9385_firmware, wcd9390_firmware, wcd9395_firmware, wcn3988_firmware, wcn6450_firmware, wcn6650_firmware, wcn6755_firmware, wcn7860_firmware, wcn7861_firmware, wcn7880_firmware, wcn7881_firmware, wsa8810_firmware, wsa8815_firmware, wsa8830_firmware, wsa8832_firmware, wsa8835_firmware, wsa8840_firmware, wsa8845_firmware, wsa8845h_firmware, x2000077_firmware, x2000086_firmware, x2000090_firmware, x2000092_firmware, x2000094_firmware, xg101002_firmware, xg101032_firmware, xg101039_firmware, xrv7209_firmware, xrv9209_firmware

Risk scores

CVSS 3.1

Type
Primary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
HIGH

Weaknesses

product-security@qualcomm.com
CWE-126

Social media

Hype score
Not currently trending

Configurations

Related CVEs

  1. Memory Corruption when handling power management requests with improperly sized input/output buffers.CVE-2026-21382
  2. Memory Corruption when using deprecated DMABUF IOCTL calls to manage video memory.CVE-2026-21380
  3. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21378
  4. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.CVE-2026-21376
  5. Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.CVE-2026-21375

References

Sources include official advisories and independent security research.