CVE-2025-59614
Received Received - Intake
Memory Corruption in Qualcomm Chipset Firmware

Publication date: 2026-06-01

Last updated on: 2026-06-01

Assigner: Qualcomm, Inc.

Description
Memory Corruption when sending random number generator command with insufficient output buffer size.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-01
Last Modified
2026-06-01
Generated
2026-06-02
AI Q&A
2026-06-02
EPSS Evaluated
N/A
NVD
CVE-2025-59614
EUVD
EUVD-2025-210027
Affected Vendors & Products
Currently, no data is known.
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-787 The product writes data past the end, or before the beginning, of the intended buffer.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a memory corruption issue that occurs when a random number generator command is sent with an output buffer size that is too small.


How can this vulnerability impact me? :

The vulnerability can lead to high impact on confidentiality, integrity, and availability of the affected system, as indicated by the CVSS score. Exploiting this memory corruption could allow an attacker with high privileges and local access to compromise the system.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart