Skip to main content
Mallory
Back to vulnerabilities
High

Buffer Overflow Memory Corruption in Qualcomm Strongbox

IdentifiersCVE-2026-25277CWE-120· Buffer Copy without Checking Size…

CVE-2026-25277 is a Qualcomm closed-source component vulnerability described as memory corruption while using Strongbox due to a buffer overflow. The available information indicates that the flaw occurs in the context of Strongbox usage and results from improper bounds handling consistent with CWE-120. Publicly available detail does not identify the specific vulnerable function or code path beyond the Strongbox context.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation can cause memory corruption with high impact to confidentiality, integrity, and availability. Qualcomm’s published CVSS v3.1 vector (AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H) indicates a local attack requiring low privileges and no user interaction, with changed scope. Depending on exploitability in the affected implementation, outcomes could include process compromise, arbitrary code execution in the vulnerable security context, data exposure or modification, and denial of service via crash or instability.

Mitigation

If you can’t patch tonight, do this now.

If a patch is not yet available, mitigation options are limited because the issue is in a closed-source Qualcomm component. Reduce exposure by promptly applying OEM security updates when released, limiting local code execution by untrusted applications, enforcing least privilege, and maintaining platform protections such as application vetting and Google Play Protect where applicable. No specific configuration workaround is publicly documented in the provided material.

Remediation

Patch, then assume compromise.

Apply the vendor-provided fix from Qualcomm’s June 2026 security bulletin and any downstream Android OEM security updates that incorporate the patch. Because this affects a Qualcomm closed-source component, remediation depends on installing updated vendor firmware or device security patches from the platform or device manufacturer.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
QualcommCq8750m Firmwareoperating_system
QualcommFastconnect 6700 Firmwareoperating_system
QualcommFastconnect 6800 Firmwareoperating_system
QualcommFastconnect 6900 Firmwareoperating_system
QualcommFastconnect 7800 Firmwareoperating_system
QualcommG3x Gen 2 Firmwareoperating_system
QualcommPandeiro Firmwareoperating_system
QualcommQca6391 Firmwareoperating_system
QualcommQca6698au Firmwareoperating_system
QualcommQca6797aq Firmwareoperating_system
QualcommQcm5430 Firmwareoperating_system
QualcommQcm6490 Firmwareoperating_system
QualcommQcm8838 Firmwareoperating_system
QualcommQcn9011 Firmwareoperating_system
QualcommQcn9012 Firmwareoperating_system
QualcommQcs8550 Firmwareoperating_system
QualcommSd865 5g Firmwareoperating_system
QualcommSdr753 Firmwareoperating_system
QualcommSm8550p Firmwareoperating_system
QualcommSm8650q Firmwareoperating_system
QualcommSm8750p Firmwareoperating_system
QualcommSnapdragon 460 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 662 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8 Elite Firmwareoperating_system
QualcommSnapdragon 8 Elite Gen 5 Firmwareoperating_system
QualcommSnapdragon 8 Gen 2 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8 Gen 3 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 8+ Gen 2 Mobile Platform Firmwareoperating_system
QualcommSnapdragon 865 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 865+ 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon 870 5g Mobile Platform Firmwareoperating_system
QualcommSnapdragon Ar1 Gen 1 Platform Firmwareoperating_system
QualcommSnapdragon X55 5g Modem-Rf System Firmwareoperating_system
QualcommSnapdragon Xr2 5g Platform Firmwareoperating_system
QualcommSnapdragon Xr2+ Gen 1 Platform Firmwareoperating_system
QualcommVideo Collaboration Vc3 Platform Firmwareoperating_system
QualcommWcd9370 Firmwareoperating_system
QualcommWcd9375 Firmwareoperating_system
QualcommWcd9380 Firmwareoperating_system
QualcommWcd9385 Firmwareoperating_system
QualcommWcd9390 Firmwareoperating_system
QualcommWcd9395 Firmwareoperating_system
QualcommWcn3950 Firmwareoperating_system
QualcommWcn3988 Firmwareoperating_system
QualcommWcn7760 Firmwareoperating_system
QualcommWcn7860 Firmwareoperating_system
QualcommWcn7861 Firmwareoperating_system
QualcommWcn7880 Firmwareoperating_system
QualcommWcn7881 Firmwareoperating_system
QualcommWsa8810 Firmwareoperating_system
QualcommWsa8815 Firmwareoperating_system
QualcommWsa8830 Firmwareoperating_system
QualcommWsa8832 Firmwareoperating_system
QualcommWsa8835 Firmwareoperating_system
QualcommWsa8840 Firmwareoperating_system
QualcommWsa8845 Firmwareoperating_system
QualcommWsa8845h Firmwareoperating_system

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

10 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

10 SOURCESView more in app
What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity7

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2026-25277
NVD
nvd.nist.gov/vuln/detail/CVE-2026-25277
MITRE CWE · CWE-120
Buffer Copy without Checking Size of Input…
Vendor Advisory
docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html