Qualcomm Cologne_firmware
19 CVEs affecting Qualcomm Cologne_firmware. Latest disclosed: 2026-06-01. Critical: 0, High: 11.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-25260 | High | 7.8 | 2026-06-01 | Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications. |
CVE-2026-25259 | High | 7.8 | 2026-06-01 | Memory corruption while processing multiple IOCTL command for escape operations. |
CVE-2026-25258 | High | 7.8 | 2026-06-01 | Memory corruption while processing IOCTL calls for escape operations. |
CVE-2025-59606 | High | 7.8 | 2026-06-01 | Memory Corruption when writing to invalid memory locations occurs due to heap memory exhaustion during secure data initialization. |
CVE-2025-59604 | High | 7.8 | 2026-06-01 | Memory Corruption when running a memory copy operation due to invalid writes caused by a null pointer. |
CVE-2026-24092 | High | 7.2 | 2026-06-01 | Memory Corruption when processing fastboot commands to set display mode. |
CVE-2026-24091 | High | 7.2 | 2026-06-01 | Memory corruption while processing fastboot commands with improperly formatted input. |
CVE-2026-24089 | High | 7.2 | 2026-06-01 | Memory corruption while processing fastboot commands with invalid input. |
CVE-2026-24087 | High | 7.2 | 2026-06-01 | Memory corruption while processing fastboot OEM commands. |
CVE-2026-24085 | High | 7.2 | 2026-06-01 | Memory Corruption when processing display command line information due to improper initialization of a variable. |
CVE-2026-24090 | High | 7.1 | 2026-06-01 | Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow. |
CVE-2025-59614 | Medium | 6.7 | 2026-06-01 | Memory Corruption when sending random number generator command with insufficient output buffer size. |
CVE-2025-59613 | Medium | 6.7 | 2026-06-01 | Memory Corruption when output buffer size is smaller than input buffer size during data copying operation. |
CVE-2025-59612 | Medium | 6.7 | 2026-06-01 | Memory corruption in windows drivers while sending incorrect trusted application request |
CVE-2025-59611 | Medium | 6.7 | 2026-06-01 | Memory corruption in diagnostic services due to absence of input validation |
CVE-2025-47403 | Medium | 6.5 | 2026-05-04 | Transient DOS when processing a malformed Fast Transition response frame with an invalid header structure during wireless roaming. |
CVE-2025-47401 | Medium | 6.5 | 2026-05-04 | Transient DOS when processing target power rate tables during channel configuration. |
CVE-2025-47406 | Medium | 6.1 | 2026-05-04 | Information Disclosure while processing IOCTL handler callbacks without verifying buffer size. |
CVE-2026-25266 | Medium | 5.5 | 2026-05-04 | Memory corruption while processing IOCTL command when device is in power-save state. |