Skip to main content
Mallory
Back to vulnerabilities
High

Memory corruption due to concurrent user-mode buffer modification

IdentifiersCVE-2026-25260CWE-367· Time-of-check Time-of-use (TOCTOU)…

CVE-2026-25260 is a memory corruption vulnerability caused by accessing shared buffers without validating whether user-mode input has been concurrently modified. The available description indicates a race-condition style flaw in which a component operates on shared memory or buffers originating from user mode while failing to ensure the data remains stable between validation and use. This can result in memory corruption during processing of the affected buffer.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation could cause memory corruption, which may lead to denial of service, crashes, or application instability. Depending on the affected product, privilege boundary, and execution context, the flaw could also potentially be leveraged for arbitrary code execution.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
QualcommCologne Firmwareoperating_system
QualcommFastconnect 6700 Firmwareoperating_system
QualcommFastconnect 6900 Firmwareoperating_system
QualcommFastconnect 7800 Firmwareoperating_system
QualcommQcm5430 Firmwareoperating_system
QualcommQcm6490 Firmwareoperating_system
QualcommSc8380xp Firmwareoperating_system
QualcommSd865 5g Firmwareoperating_system
QualcommSnapdragon Ar1 Gen 1 Platform Firmwareoperating_system
QualcommSnapdragon Xr2 5g Platform Firmwareoperating_system
QualcommSnapdragon Xr2+ Gen 1 Platform Firmwareoperating_system
QualcommSxr2230p Firmwareoperating_system
QualcommSxr2250p Firmwareoperating_system
QualcommVideo Collaboration Vc3 Platform Firmwareoperating_system
QualcommWcd9370 Firmwareoperating_system
QualcommWcd9375 Firmwareoperating_system
QualcommWcd9378c Firmwareoperating_system
QualcommWcd9380 Firmwareoperating_system
QualcommWcd9385 Firmwareoperating_system
QualcommWsa8810 Firmwareoperating_system
QualcommWsa8815 Firmwareoperating_system
QualcommWsa8830 Firmwareoperating_system
QualcommWsa8832 Firmwareoperating_system
QualcommWsa8835 Firmwareoperating_system
QualcommWsa8840 Firmwareoperating_system
QualcommWsa8845 Firmwareoperating_system
QualcommWsa8845h Firmwareoperating_system
QualcommX2000077 Firmwareoperating_system
QualcommX2000086 Firmwareoperating_system
QualcommX2000090 Firmwareoperating_system
QualcommX2000092 Firmwareoperating_system
QualcommX2000094 Firmwareoperating_system
QualcommXg101002 Firmwareoperating_system
QualcommXg101032 Firmwareoperating_system
QualcommXg101039 Firmwareoperating_system

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

6 sources tracked across advisories and community write-ups. News coverage will land here when it surfaces.

6 SOURCESView more in app

No news coverage yet. Advisories and community discussion only.

What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity6

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2026-25260
NVD
nvd.nist.gov/vuln/detail/CVE-2026-25260
MITRE CWE · CWE-367
Time-of-check Time-of-use (TOCTOU) Race…
Vendor Advisory
docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html