Cyber Resilience

CVE-2026-25259

High

Published: 01 June 2026

Published
01 June 2026
Modified
02 June 2026
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0001 2.0th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-25259 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Qualcomm Cologne Firmware. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 2.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Memory corruption while processing multiple IOCTL command for escape operations.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
T1611 Escape to Host Privilege Escalation
Adversaries may break out of a container or virtualized environment to gain access to the underlying host.
Why these techniques?

Memory corruption via IOCTLs enabling kernel-level code execution for privilege escalation or VM/container escape.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-59603Same product: Qualcomm Cologne
CVE-2026-25260Same product: Qualcomm Cologne
CVE-2026-21375Same product: Qualcomm Cologne
CVE-2026-25258Same product: Qualcomm Cologne
CVE-2025-47373Same product: Qualcomm Cologne
CVE-2025-47346Same product: Qualcomm Fastconnect 6700
CVE-2026-21372Same product: Qualcomm Cologne
CVE-2025-47390Same product: Qualcomm Cologne
CVE-2026-21378Same product: Qualcomm Cologne
CVE-2025-47343Same product: Qualcomm Cologne

Affected Assets

qualcomm
cologne firmware
all versions
qualcomm
fastconnect 6700 firmware
all versions
qualcomm
fastconnect 6900 firmware
all versions
qualcomm
fastconnect 7800 firmware
all versions
qualcomm
iqx5121 firmware
all versions
qualcomm
iqx7181 firmware
all versions
qualcomm
qca0000 firmware
all versions
qualcomm
qcm5430 firmware
all versions
qualcomm
qcm6490 firmware
all versions
qualcomm
video collaboration vc3 platform firmware
all versions
+32 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-787

Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.

References