CVE-2025-59611
6.7 MEDIUMMemory corruption in diagnostic services due to absence of input validation
Published: 2026-06-01 · Last updated: 2026-06-02
Severity and scoring
- CVSS
- 6.7 MEDIUM
- Vector
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-787
Affected products
| Vendor | Product |
|---|---|
| qualcomm | aqt1000_firmware, cologne_firmware, fastconnect_6200_firmware |
Description
Memory corruption in diagnostic services due to absence of input validation
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-25277 — Memory corruption while using Strongbox due to buffer overflow (8.8 HIGH)
- CVE-2026-25276 — Memory corruption while using Strongbox due to missing bounds check (8.8 HIGH)
- CVE-2026-25260 — Memory Corruption when accessing shared buffers without validation of concurrent user-mode input modifications (7.8 HIGH)
- CVE-2026-25259 — Memory corruption while processing multiple IOCTL command for escape operations (7.8 HIGH)
- CVE-2026-25258 — Memory corruption while processing IOCTL calls for escape operations (7.8 HIGH)
Same CWE
- CVE-2026-54410 — nanoMODBUS through v1.23.0 contains an off-by-one buffer overflow in the recv_msg_header() function of the Modbus/TCP server that allows ... (8.6 HIGH)
- CVE-2026-6676 — Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execu... (7.8 HIGH)
- CVE-2025-14098 — Heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine when scanning a malformed MS-DOS executab... (7.8 HIGH)
- CVE-2026-41157 — A web page that contains unusual WebGPU content loaded into the GPU GLES render process and can trigger an out-of-bound write in the GPU ...
- CVE-2026-34195 — Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in t...