Cyber Resilience

CVE-2026-21376

High

Published: 06 April 2026

Published
06 April 2026
Modified
08 April 2026
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0001 0.3th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-21376 is a high-severity Buffer Over-read (CWE-126) vulnerability in Qualcomm Aqt1000 Firmware. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 0.3th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2026-21376 is a memory corruption vulnerability stemming from CWE-126 (Buffer Over-read), occurring when an output buffer is accessed without validating its size during IOCTL processing in a camera sensor driver. This issue affects Qualcomm components, as documented in their security resources.

The vulnerability carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). A local attacker with low privileges can exploit it through low-complexity means without requiring user interaction, potentially achieving high impacts on confidentiality, integrity, and availability, such as arbitrary code execution or data corruption within the affected driver context.

Qualcomm's April 2026 security bulletin at https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2026-bulletin.html details the vulnerability, including affected products and guidance on mitigation through available patches or updates.

EU & UK References

Vulnerability details

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Local kernel driver memory corruption (IOCTL buffer over-read) directly enables exploitation for privilege escalation to achieve arbitrary code execution.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-21374Same product: Qualcomm Aqt1000
CVE-2026-21373Same product: Qualcomm Aqt1000
CVE-2026-21371Same product: Qualcomm Aqt1000
CVE-2026-21378Same product: Qualcomm Aqt1000
CVE-2026-21375Same product: Qualcomm Cologne
CVE-2025-47390Same product: Qualcomm Cologne
CVE-2025-59600Same product: Qualcomm Fastconnect 6200
CVE-2024-45561Same product: Qualcomm Aqt1000
CVE-2026-21372Same product: Qualcomm Cologne
CVE-2026-25260Same product: Qualcomm Cologne

Affected Assets

qualcomm
aqt1000 firmware
all versions
qualcomm
cologne firmware
all versions
qualcomm
fastconnect 6200 firmware
all versions
qualcomm
fastconnect 6700 firmware
all versions
qualcomm
fastconnect 6800 firmware
all versions
qualcomm
fastconnect 6900 firmware
all versions
qualcomm
fastconnect 7800 firmware
all versions
qualcomm
qca0000 firmware
all versions
qualcomm
qca6391 firmware
all versions
qualcomm
qca6420 firmware
all versions
+44 more product configuration(s) — see NVD for full list

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires validation of information inputs like buffer sizes during IOCTL processing to prevent buffer over-read memory corruption.

prevent

Implements memory protection mechanisms that comprehensively mitigate exploitation of memory corruption vulnerabilities in drivers.

prevent

Ensures timely identification, reporting, and patching of flaws like this buffer over-read in the camera sensor driver as detailed in Qualcomm's bulletin.

References