AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2026-21385: Qualcomm Multiple Chipsets Memory Corruption Vulnerability

infovulnerability🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesMarch 2, 2026CVE-2026-21385

Summary

Multiple Qualcomm chipsets have a memory corruption vulnerability (a bug where data in computer memory gets corrupted or overwritten) that occurs during memory alignment operations, which are critical for how systems organize data. This vulnerability is actively being exploited by attackers in real-world attacks.

Solution / Mitigation

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.4%

Exploit Maturity

🔥 Actively Exploited

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-190

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-21385

First tracked: March 3, 2026 at 03:00 PM

Classified by LLM (prompt v3) · confidence: 95%