CVE-2026-24090

high

Published 2026-06-01 · Modified 2026-06-03

💬 Discuss on Community ✚ Propose mitigation

CVSS v3

7.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CVSS v4 NEW

—

not yet in upstream

VIR risk

7.1

Description

Cryptographic issue while processing partition table entries allows unauthorized modification of boot flow.

Predictions

Exploit likelihood

70%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or — if you've already worked around this in production — publish your fix to the community-verified tier.

✚ Propose a mitigation on Community → Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Application impact

Vendor	Product	Versions	Fixed
qualcomm	ar8031	`-`
qualcomm	ar8035	`-`
qualcomm	cologne	`-`
qualcomm	cq7790	`-`
qualcomm	cq8725s	`-`
qualcomm	sm6850	`-`
qualcomm	sm7435	`-`
qualcomm	sm7435p	`-`
qualcomm	sm7525	`-`
qualcomm	sm7550	`-`
qualcomm	sm7550p	`-`
qualcomm	sm7635p	`-`
qualcomm	sm7675	`-`
qualcomm	sm7675p	`-`
qualcomm	sm8550p	`-`
qualcomm	sm8635	`-`
qualcomm	sm8635p	`-`
qualcomm	sm8650q	`-`
qualcomm	sm8735p	`-`
qualcomm	sm8750p	`-`
qualcomm	sm8845p	`-`
qualcomm	smart_audio_400_platform	`-`
qualcomm	snapdragon_4_gen_1_mobile_platform	`-`
qualcomm	snapdragon_4_gen_2_mobile_platform	`-`
qualcomm	snapdragon_460_mobile_platform	`-`
qualcomm	snapdragon_480_5g_mobile_platform	`-`
qualcomm	snapdragon_480\+_5g_mobile_platform	`-`
qualcomm	snapdragon_6_gen_1_mobile_platform	`-`
qualcomm	snapdragon_6_gen_3_mobile_platform	`-`
qualcomm	snapdragon_6_gen_4_mobile_platform	`-`
qualcomm	snapdragon_662_mobile_platform	`-`
qualcomm	snapdragon_680_4g_mobile_platform	`-`
qualcomm	snapdragon_685_4g_mobile_platform	`-`
qualcomm	snapdragon_695_5g_mobile_platform	`-`
qualcomm	snapdragon_7_gen_4_mobile_platform	`-`
qualcomm	snapdragon_7s_gen_3_mobile_platform	`-`
qualcomm	snapdragon_8_elite	`-`
qualcomm	snapdragon_8_elite_gen_5	`-`
qualcomm	snapdragon_8_gen_2_mobile_platform	`-`
qualcomm	snapdragon_8_gen_3_mobile_platform	`-`
qualcomm	snapdragon_8\+_gen_2_mobile_platform	`-`
qualcomm	snapdragon_ar1_gen_1_platform	`-`
qualcomm	snapdragon_ar1\+_gen_1_platform	`-`
qualcomm	snapdragon_auto_5g_modem-rf_gen_2	`-`
qualcomm	snapdragon_w5\+_gen_1_wearable_platform	`-`
qualcomm	wsa8830	`-`
qualcomm	wsa8832	`-`
qualcomm	wsa8835	`-`
qualcomm	wsa8840	`-`
qualcomm	wsa8845	`-`
qualcomm	wsa8845h	`-`
qualcomm	wsa8850	`-`
qualcomm	wsa8850w	`-`
qualcomm	wsa8855c	`-`
qualcomm	x1e80100	`-`
qualcomm	xrv7209	`-`
qualcomm	xrv9209	`-`
qualcomm	cq8750m	`-`
qualcomm	csra6620	`-`
qualcomm	csra6640	`-`
qualcomm	fastconnect_6200	`-`
qualcomm	fastconnect_6700	`-`
qualcomm	fastconnect_6900	`-`
qualcomm	fastconnect_7800	`-`
qualcomm	flight_rb5_5g_platform	`-`
qualcomm	fwa_gen_3_ultra	`-`
qualcomm	fwa_gen_5_elite	`-`
qualcomm	g1_gen_1	`-`
qualcomm	g2_gen_1	`-`
qualcomm	g3x_gen_2	`-`
qualcomm	iq-9075	`-`
qualcomm	kalpeni	`-`
qualcomm	kobuk	`-`
qualcomm	lemans_au_lgit	`-`
qualcomm	lemansau	`-`
qualcomm	milos	`-`
qualcomm	milos_iot	`-`
qualcomm	molokai	`-`
qualcomm	netrani	`-`
qualcomm	orne	`-`
qualcomm	palawan25	`-`
qualcomm	pandeiro	`-`
qualcomm	qam8255p	`-`
qualcomm	qam8295p	`-`
qualcomm	qam8397p	`-`
qualcomm	qam8797p	`-`
qualcomm	qamsrv1h	`-`
qualcomm	qamsrv1m	`-`
qualcomm	qca2066	`-`
qualcomm	qca6174a	`-`
qualcomm	qca6391	`-`
qualcomm	qca6564au	`-`
qualcomm	qca6574	`-`
qualcomm	qca6574a	`-`
qualcomm	qca6574au	`-`
qualcomm	qca6584au	`-`
qualcomm	qca6595	`-`
qualcomm	qca6595au	`-`
qualcomm	qca6678aq	`-`
qualcomm	qca6688aq	`-`
qualcomm	qca6696	`-`
qualcomm	qca6698aq	`-`
qualcomm	qca6698au	`-`
qualcomm	qca6797aq	`-`
qualcomm	qca8081	`-`
qualcomm	qca8337	`-`
qualcomm	qca8386	`-`
qualcomm	qca8695au	`-`
qualcomm	qca9367	`-`
qualcomm	qca9377	`-`
qualcomm	qcc710	`-`
qualcomm	qcf8001	`-`
qualcomm	qcm2290	`-`
qualcomm	qcm4325	`-`
qualcomm	qcm6125	`-`
qualcomm	qcm8838	`-`
qualcomm	qcn6224	`-`
qualcomm	qcn6274	`-`
qualcomm	qcn9011	`-`
qualcomm	qcn9012	`-`
qualcomm	qcs2290	`-`
qualcomm	qcs4290	`-`
qualcomm	qcs6690	`-`
qualcomm	qcs8550	`-`
qualcomm	qdu1000	`-`
qualcomm	qdu1110	`-`
qualcomm	qdu1210	`-`
qualcomm	qdx1010	`-`
qualcomm	qdx1011	`-`
qualcomm	qep8111	`-`
qualcomm	qfw7114	`-`
qualcomm	qfw7124	`-`
qualcomm	qln1083bd	`-`
qualcomm	qln1086bd	`-`
qualcomm	qmb715	`-`
qualcomm	qmp1000	`-`
qualcomm	qmp2001	`-`
qualcomm	snapdragon_x32_5g_modem-rf_system	`-`
qualcomm	snapdragon_x35_5g_modem-rf_system	`-`
qualcomm	snapdragon_x72_5g_modem-rf_system	`-`
qualcomm	snapdragon_x75_5g_modem-rf_system	`-`
qualcomm	snapdragon_xr2_5g_platform	`-`
qualcomm	snapdragon_xr2\+_gen_1_platform	`-`
qualcomm	snapdragon_wear_elite_platform	`-`
qualcomm	srv1h	`-`
qualcomm	srv1m	`-`
qualcomm	sw5100	`-`
qualcomm	sw5100p	`-`
qualcomm	sxr2230p	`-`
qualcomm	sxr2250p	`-`
qualcomm	sxr2330p	`-`
qualcomm	sxr2350p	`-`
qualcomm	themisto	`-`
qualcomm	wcd9335	`-`
qualcomm	wcd9340	`-`
qualcomm	wcd9370	`-`
qualcomm	wcd9371	`-`
qualcomm	wcd9375	`-`
qualcomm	wcd9378	`-`
qualcomm	wcd9380	`-`
qualcomm	wcd9385	`-`
qualcomm	wcd9390	`-`
qualcomm	wcd9395	`-`
qualcomm	wcn3910	`-`
qualcomm	wcn3950	`-`
qualcomm	wcn3980	`-`
qualcomm	wcn3988	`-`
qualcomm	wcn6450	`-`
qualcomm	wcn6650	`-`
qualcomm	wcn6755	`-`
qualcomm	wcn7760	`-`
qualcomm	wcn7860	`-`
qualcomm	wcn7861	`-`
qualcomm	wcn7880	`-`
qualcomm	wcn7881	`-`
qualcomm	wsa8810	`-`
qualcomm	wsa8815	`-`
qualcomm	qpa1083bd	`-`
qualcomm	qpa1086bd	`-`
qualcomm	qrb5165n	`-`
qualcomm	qru1032	`-`
qualcomm	qualcomm_dragonwing_qru100_platform	`-`
qualcomm	qualcomm_dragonwing_x100_accelerator_card	`-`
qualcomm	video_collaboration_vc1_platform	`-`
qualcomm	video_collaboration_vc3_platform	`-`
qualcomm	video_collaboration_vc5_platform	`-`
qualcomm	qxm1083	`-`
qualcomm	qxm1086	`-`
qualcomm	qxm1093	`-`
qualcomm	qxm1094	`-`
qualcomm	qxm1095	`-`
qualcomm	qxm1096	`-`
qualcomm	robotics_rb5_platform	`-`
qualcomm	sa510m	`-`
qualcomm	sa6155p	`-`
qualcomm	sa7255p	`-`
qualcomm	sa7775p	`-`
qualcomm	sa8155p	`-`
qualcomm	sa8195p	`-`
qualcomm	sa8255p	`-`

References

https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2026-bulletin.html

CWEs

CWE-306

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.