CVE-2025-59606
Received
Received - Intake
Memory Corruption in Qualcomm Chipset Firmware
Publication date: 2026-06-01
Last updated on: 2026-06-01
Assigner: Qualcomm, Inc.
Description
Description
Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-476 | The product dereferences a pointer that it expects to be valid but is NULL. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves memory corruption that occurs when the system attempts to write to invalid memory locations. The root cause is heap memory exhaustion during the process of secure data initialization.
How can this vulnerability impact me? :
The impact of this vulnerability can be severe as indicated by its CVSS score. It can lead to high confidentiality, integrity, and availability impacts, meaning an attacker with limited privileges and local access could exploit it to compromise sensitive data, alter information, or cause denial of service.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70