CVE-2026-21367 PUBLISHED

Buffer Over-read in WLAN Firmware

Assigner: qualcomm
Reserved: 17.12.2025 Published: 06.04.2026 Updated: 06.04.2026

Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
CVSS Score: 7.6

Product Status

Vendor Qualcomm, Inc.
Product Snapdragon
Versions Default: unaffected
  • Version AR8035 is affected
  • Version Cologne is affected
  • Version CSR8811 is affected
  • Version FastConnect 6200 is affected
  • Version FastConnect 6700 is affected
  • Version FastConnect 6900 is affected
  • Version FastConnect 7800 is affected
  • Version FWA Gen 3 Ultra Platform is affected
  • Version G2 Gen 1 is affected
  • Version Immersive Home 214 Platform is affected
  • Version Immersive Home 216 Platform is affected
  • Version Immersive Home 316 Platform is affected
  • Version Immersive Home 318 Platform is affected
  • Version IPQ5010 is affected
  • Version IPQ5028 is affected
  • Version IPQ6000 is affected
  • Version IPQ6010 is affected
  • Version IPQ6018 is affected
  • Version IPQ8076 is affected
  • Version IPQ8078 is affected
  • Version IPQ9574 is affected
  • Version Milos is affected
  • Version Netrani is affected
  • Version Networking Pro 1200 Platform is affected
  • Version Networking Pro 1210 Platform is affected
  • Version Networking Pro 1610 Platform is affected
  • Version Networking Pro 400 Platform is affected
  • Version Networking Pro 600 Platform is affected
  • Version Networking Pro 610 Platform is affected
  • Version Networking Pro 800 Platform is affected
  • Version Networking Pro 810 Platform is affected
  • Version Orne is affected
  • Version Palawan25 is affected
  • Version Pandeiro is affected
  • Version QCA4024 is affected
  • Version QCA6391 is affected
  • Version QCA6698AU is affected
  • Version QCA6777AQ is affected
  • Version QCA6787AQ is affected
  • Version QCA6797AQ is affected
  • Version QCA8075 is affected
  • Version QCA8081 is affected
  • Version QCA8082 is affected
  • Version QCA8084 is affected
  • Version QCA8085 is affected
  • Version QCA8337 is affected
  • Version QCA8386 is affected
  • Version QCA9888 is affected
  • Version QCA9889 is affected
  • Version QCC2073 is affected
  • Version QCC2076 is affected
  • Version QCC710 is affected
  • Version QCM4490 is affected
  • Version QCN5022 is affected
  • Version QCN5024 is affected
  • Version QCN5052 is affected
  • Version QCN5122 is affected
  • Version QCN5124 is affected
  • Version QCN5152 is affected
  • Version QCN5154 is affected
  • Version QCN5164 is affected
  • Version QCN6023 is affected
  • Version QCN6024 is affected
  • Version QCN6122 is affected
  • Version QCN6132 is affected
  • Version QCN6224 is affected
  • Version QCN6274 is affected
  • Version QCN9000 is affected
  • Version QCN9011 is affected
  • Version QCN9012 is affected
  • Version QCN9022 is affected
  • Version QCN9024 is affected
  • Version QCN9070 is affected
  • Version QCN9100 is affected
  • Version QCN9274 is affected
  • Version QCS4490 is affected
  • Version QCS8550 is affected
  • Version QFW7114 is affected
  • Version QFW7124 is affected
  • Version QLN1083BD is affected
  • Version QLN1086BD is affected
  • Version QMP1000 is affected
  • Version QPA1083BD is affected
  • Version QPA1086BD is affected
  • Version QXM1093 is affected
  • Version QXM1094 is affected
  • Version QXM1095 is affected
  • Version QXM1096 is affected
  • Version SAR2130P is affected
  • Version SC8380XP is affected
  • Version SD 8 Gen1 5G is affected
  • Version SM6650P is affected
  • Version SM7435 is affected
  • Version SM7635P is affected
  • Version SM7675 is affected
  • Version SM7675P is affected
  • Version SM8475P is affected
  • Version SM8635 is affected
  • Version SM8635P is affected
  • Version SM8650Q is affected
  • Version SM8750P is affected
  • Version Snapdragon 6 Gen 1 Mobile Platform is affected
  • Version Snapdragon 6 Gen 3 Mobile Platform is affected
  • Version Snapdragon 6 Gen 4 Mobile Platform is affected
  • Version Snapdragon 7 Gen 1 Mobile Platform is affected
  • Version Snapdragon 7+ Gen 2 Mobile Platform is affected
  • Version Snapdragon 7s Gen 3 Mobile Platform is affected
  • Version Snapdragon 8 Elite is affected
  • Version Snapdragon 8 Elite Gen 5 is affected
  • Version Snapdragon 8 Gen 1 Mobile Platform is affected
  • Version Snapdragon 8 Gen 3 Mobile Platform is affected
  • Version Snapdragon 8+ Gen 1 Mobile Platform is affected
  • Version Snapdragon X72 5G Modem-RF System is affected
  • Version Snapdragon X75 5G Modem-RF System is affected
  • Version WCD9340 is affected
  • Version WCD9370 is affected
  • Version WCD9375 is affected
  • Version WCD9378 is affected
  • Version WCD9378C is affected
  • Version WCD9380 is affected
  • Version WCD9385 is affected
  • Version WCD9390 is affected
  • Version WCD9395 is affected
  • Version WCN3950 is affected
  • Version WCN3988 is affected
  • Version WCN6450 is affected
  • Version WCN6650 is affected
  • Version WCN6755 is affected
  • Version WCN7860 is affected
  • Version WCN7861 is affected
  • Version WCN7880 is affected
  • Version WCN7881 is affected
  • Version WSA8810 is affected
  • Version WSA8815 is affected
  • Version WSA8830 is affected
  • Version WSA8832 is affected
  • Version WSA8835 is affected
  • Version WSA8840 is affected
  • Version WSA8845 is affected
  • Version WSA8845H is affected
  • Version X2000077 is affected
  • Version X2000086 is affected
  • Version X2000090 is affected
  • Version X2000092 is affected
  • Version X2000094 is affected
  • Version XG101002 is affected
  • Version XG101032 is affected
  • Version XG101039 is affected
  • Version XRV7209 is affected
  • Version XRV9209 is affected

References

Problem Types

  • CWE-126 Buffer Over-read CWE