CVE-2026-24088

Analyzed Analyzed - Analysis Complete

Unauthorized Bootloader Write Access in Qualcomm Chipset

Publication date: 2026-06-01

Last updated on: 2026-06-02

Assigner: Qualcomm, Inc.

Description

Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published

2026-06-01

Last Modified

2026-06-02

Generated

2026-06-22

AI Q&A

2026-06-02

EPSS Evaluated

2026-06-21

NVD

CVE-2026-24088

EUVD

EUVD-2026-33845

Affected Vendors & Products

Vendor	Product	Version / Range
qualcomm	ar9380_firmware	*
qualcomm	csr8811_firmware	*
qualcomm	fastconnect_6200_firmware	*
qualcomm	fastconnect_6700_firmware	*
qualcomm	fastconnect_6900_firmware	*
qualcomm	fastconnect_7800_firmware	*
qualcomm	g1_gen_1_firmware	*
qualcomm	g2_gen_1_firmware	*
qualcomm	g3x_gen_2_firmware	*
qualcomm	immersive_home_214_platform_firmware	*
qualcomm	immersive_home_216_platform_firmware	*
qualcomm	immersive_home_316_platform_firmware	*
qualcomm	immersive_home_318_platform_firmware	*
qualcomm	ipq4018_firmware	*
qualcomm	ipq4019_firmware	*
qualcomm	ipq4028_firmware	*
qualcomm	ipq4029_firmware	*
qualcomm	ipq5010_firmware	*
qualcomm	ipq6010_firmware	*
qualcomm	ipq6018_firmware	*
qualcomm	ipq8064_firmware	*
qualcomm	ipq8065_firmware	*
qualcomm	ipq8068_firmware	*
qualcomm	ipq8070_firmware	*
qualcomm	ipq8076_firmware	*
qualcomm	ipq8078_firmware	*
qualcomm	iq-9075_firmware	*
qualcomm	kalpeni_firmware	*
qualcomm	lemans_au_lgit_firmware	*
qualcomm	lemansau_firmware	*
qualcomm	mdm9628_firmware	*
qualcomm	milos_firmware	*
qualcomm	milos_iot_firmware	*
qualcomm	molokai_firmware	*
qualcomm	netrani_firmware	*
qualcomm	networking_pro_1200_platform_firmware	*
qualcomm	networking_pro_1210_platform_firmware	*
qualcomm	networking_pro_1610_platform_firmware	*
qualcomm	networking_pro_400_platform_firmware	*
qualcomm	networking_pro_600_platform_firmware	*
qualcomm	networking_pro_610_platform_firmware	*
qualcomm	networking_pro_800_platform_firmware	*
qualcomm	networking_pro_810_platform_firmware	*
qualcomm	orne_firmware	*
qualcomm	palawan25_firmware	*
qualcomm	snapdragon_480_5g_mobile_platform_firmware	*
qualcomm	snapdragon_480+_5g_mobile_platform_firmware	*
qualcomm	snapdragon_6_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_6_gen_3_mobile_platform_firmware	*
qualcomm	snapdragon_6_gen_4_mobile_platform_firmware	*
qualcomm	snapdragon_625_mobile_platform_firmware	*
qualcomm	snapdragon_626_mobile_platform_firmware	*
qualcomm	snapdragon_662_mobile_platform_firmware	*
qualcomm	snapdragon_680_4g_mobile_platform_firmware	*
qualcomm	snapdragon_685_4g_mobile_platform_firmware	*
qualcomm	snapdragon_695_5g_mobile_platform_firmware	*
qualcomm	snapdragon_7_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_7_gen_4_mobile_platform_firmware	*
qualcomm	snapdragon_7+_gen_2_mobile_platform_firmware	*
qualcomm	snapdragon_7s_gen_3_mobile_platform_firmware	*
qualcomm	snapdragon_8_elite_firmware	*
qualcomm	snapdragon_8_elite_gen_5_firmware	*
qualcomm	snapdragon_8_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_8_gen_2_mobile_platform_firmware	*
qualcomm	snapdragon_8_gen_3_mobile_platform_firmware	*
qualcomm	snapdragon_8+_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_8+_gen_2_mobile_platform_firmware	*
qualcomm	snapdragon_820_automotive_platform_firmware	*
qualcomm	snapdragon_ar1_gen_1_platform_firmware	*
qualcomm	snapdragon_w5+_gen_1_wearable_platform_firmware	*
qualcomm	snapdragon_x32_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_x35_5g_modem-rf_system_firmware	*
qualcomm	snapdragon_x5_lte_modem_firmware	*
qualcomm	snapdragon_xr2_5g_platform_firmware	*
qualcomm	snapdragon_xr2+_gen_1_platform_firmware	*
qualcomm	snapdragon_wear_elite_platform_firmware	*
qualcomm	srv1h_firmware	*
qualcomm	srv1m_firmware	*
qualcomm	sw5100_firmware	*
qualcomm	sw5100p_firmware	*
qualcomm	sxr2230p_firmware	*
qualcomm	sxr2250p_firmware	*
qualcomm	sxr2330p_firmware	*
qualcomm	sxr2350p_firmware	*
qualcomm	themisto_firmware	*
qualcomm	pandeiro_firmware	*
qualcomm	qam8255p_firmware	*
qualcomm	qam8295p_firmware	*
qualcomm	qam8397p_firmware	*
qualcomm	qam8797p_firmware	*
qualcomm	qamsrv1h_firmware	*
qualcomm	qamsrv1m_firmware	*
qualcomm	qca4024_firmware	*
qualcomm	qca6174a_firmware	*
qualcomm	qca6391_firmware	*
qualcomm	qca6564a_firmware	*
qualcomm	qca6564au_firmware	*
qualcomm	qca6574a_firmware	*
qualcomm	qca6574au_firmware	*
qualcomm	qca6595_firmware	*
qualcomm	qca6595au_firmware	*
qualcomm	qca6696_firmware	*
qualcomm	qca6698aq_firmware	*
qualcomm	qca6797aq_firmware	*
qualcomm	qca7500_firmware	*
qualcomm	qca8075_firmware	*
qualcomm	qca8081_firmware	*
qualcomm	qca8695au_firmware	*
qualcomm	qca9367_firmware	*
qualcomm	qca9377_firmware	*
qualcomm	qca9880_firmware	*
qualcomm	qca9886_firmware	*
qualcomm	qca9888_firmware	*
qualcomm	qca9889_firmware	*
qualcomm	qca9898_firmware	*
qualcomm	qca9980_firmware	*
qualcomm	qca9984_firmware	*
qualcomm	qca9985_firmware	*
qualcomm	qca9990_firmware	*
qualcomm	qca9992_firmware	*
qualcomm	qca9994_firmware	*
qualcomm	qcm2290_firmware	*
qualcomm	qcm4325_firmware	*
qualcomm	qcm5430_firmware	*
qualcomm	qcm6125_firmware	*
qualcomm	vision_intelligence_100_platform_firmware	*
qualcomm	vision_intelligence_200_platform_firmware	*
qualcomm	wcd9326_firmware	*
qualcomm	wcd9340_firmware	*
qualcomm	wcd9370_firmware	*
qualcomm	wcd9371_firmware	*
qualcomm	wcd9375_firmware	*
qualcomm	wcd9378_firmware	*
qualcomm	wcd9380_firmware	*
qualcomm	wcd9385_firmware	*
qualcomm	wcd9390_firmware	*
qualcomm	wcd9395_firmware	*
qualcomm	wcn3615_firmware	*
qualcomm	wcn3660b_firmware	*
qualcomm	wcn3680b_firmware	*
qualcomm	wcn3910_firmware	*
qualcomm	wcn3950_firmware	*
qualcomm	wcn3980_firmware	*
qualcomm	wcn3988_firmware	*
qualcomm	wcn6450_firmware	*
qualcomm	wcn6650_firmware	*
qualcomm	wcn6755_firmware	*
qualcomm	wcn7760_firmware	*
qualcomm	wcn7860_firmware	*
qualcomm	wcn7861_firmware	*
qualcomm	wcn7880_firmware	*
qualcomm	wcn7881_firmware	*
qualcomm	wsa8810_firmware	*
qualcomm	wsa8815_firmware	*
qualcomm	wsa8830_firmware	*
qualcomm	wsa8832_firmware	*
qualcomm	wsa8835_firmware	*
qualcomm	wsa8840_firmware	*
qualcomm	wsa8845_firmware	*
qualcomm	wsa8845h_firmware	*
qualcomm	wsa8850_firmware	*
qualcomm	wsa8850w_firmware	*
qualcomm	wsa8855c_firmware	*
qualcomm	x1e80100_firmware	*
qualcomm	xrv7209_firmware	*
qualcomm	qcm6490_firmware	*
qualcomm	qcm8838_firmware	*
qualcomm	qcn5022_firmware	*
qualcomm	qcn5024_firmware	*
qualcomm	qcn5052_firmware	*
qualcomm	qcn5122_firmware	*
qualcomm	qcn5124_firmware	*
qualcomm	qcn5152_firmware	*
qualcomm	qcn5154_firmware	*
qualcomm	qcn5164_firmware	*
qualcomm	qcn6023_firmware	*
qualcomm	qcn6024_firmware	*
qualcomm	qcn9000_firmware	*
qualcomm	qcn9011_firmware	*
qualcomm	qcn9012_firmware	*
qualcomm	qcn9022_firmware	*
qualcomm	qcn9024_firmware	*
qualcomm	qcn9070_firmware	*
qualcomm	qcn9100_firmware	*
qualcomm	qcs2290_firmware	*
qualcomm	qcs4290_firmware	*
qualcomm	qcs6690_firmware	*
qualcomm	qep8111_firmware	*
qualcomm	qln1083bd_firmware	*
qualcomm	qln1086bd_firmware	*
qualcomm	qmb715_firmware	*
qualcomm	qmp1000_firmware	*
qualcomm	qmp2001_firmware	*
qualcomm	qpa1083bd_firmware	*
qualcomm	qpa1086bd_firmware	*
qualcomm	qualcomm_215_mobile_platform_firmware	*
qualcomm	video_collaboration_vc1_platform_firmware	*
qualcomm	video_collaboration_vc3_platform_firmware	*
qualcomm	video_collaboration_vc5_platform_firmware	*
qualcomm	qxm1093_firmware	*
qualcomm	qxm1094_firmware	*
qualcomm	qxm1095_firmware	*
qualcomm	qxm1096_firmware	*
qualcomm	sa7255p_firmware	*
qualcomm	sa7775p_firmware	*
qualcomm	xrv9209_firmware	*
qualcomm	sa8255p_firmware	*
qualcomm	sa8295p_firmware	*
qualcomm	sa8620p_firmware	*
qualcomm	sa8770p_firmware	*
qualcomm	sa9000p_firmware	*
qualcomm	sar2130p_firmware	*
qualcomm	sc8380xp_firmware	*
qualcomm	sd_8_gen1_5g_firmware	*
qualcomm	sd626_firmware	*
qualcomm	sd662_firmware	*
qualcomm	sd865_5g_firmware	*
qualcomm	sdr753_firmware	*
qualcomm	sm4850_firmware	*
qualcomm	sm4850p_firmware	*
qualcomm	sm6225p_firmware	*
qualcomm	sm6450p_firmware	*
qualcomm	sm6475p_firmware	*
qualcomm	sm6475q_firmware	*
qualcomm	sm6650p_firmware	*
qualcomm	sm6850_firmware	*
qualcomm	sm7435_firmware	*
qualcomm	sm7435p_firmware	*
qualcomm	sm7525_firmware	*
qualcomm	sm7550_firmware	*
qualcomm	sm7550p_firmware	*
qualcomm	sm7635p_firmware	*
qualcomm	sm7675_firmware	*
qualcomm	sm7675p_firmware	*
qualcomm	sm8475p_firmware	*
qualcomm	sm8550p_firmware	*
qualcomm	sm8635_firmware	*
qualcomm	sm8635p_firmware	*
qualcomm	sm8650q_firmware	*
qualcomm	sm8735p_firmware	*
qualcomm	sm8750p_firmware	*
qualcomm	sm8845p_firmware	*
qualcomm	smart_display_200_platform_firmware	*
qualcomm	snapdragon_4_gen_1_mobile_platform_firmware	*
qualcomm	snapdragon_4_gen_2_mobile_platform_firmware	*
qualcomm	snapdragon_460_mobile_platform_firmware	*

Helpful Resources

Exploitability

CWE

KEV

CWE ID	Description
CWE-306	The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

Attack-Flow Graph

Executive Summary

This vulnerability is a cryptographic issue that occurs while processing a specific partition. It allows unauthorized users to write and load a customized bootloader onto the device.

Impact Analysis

The vulnerability can have a severe impact as it allows unauthorized write access to the bootloader. This can lead to complete compromise of the device's integrity, confidentiality, and availability, potentially allowing attackers to execute arbitrary code during boot and gain high-level control over the system.

Hi! I’m here to help you understand CVE-2026-24088. Ask me anything about the vulnerability, its impact, or mitigation strategies.

0/70

CVE-2026-24088

Unauthorized Bootloader Write Access in Qualcomm Chipset

Description

CVSS Scores

EPSS Scores

Meta Information

Affected Vendors & Products

Helpful Resources

Exploitability

Attack-Flow Graph

AI Quick Actions

Chat Assistant

EPSS Chart