{"id":59077,"date":"2026-06-01T19:07:47","date_gmt":"2026-06-01T19:07:47","guid":{"rendered":"https:\/\/zero.redgem.net\/?p=59077"},"modified":"2026-06-01T19:07:47","modified_gmt":"2026-06-01T19:07:47","slug":"out-of-bounds-write-in-dsp-service","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=59077","title":{"rendered":"Out-of-bounds Write in DSP Service_CVE-2026-25259"},"content":{"rendered":"

{“lastseen”:””,”description”:”Memory corruption while processing multiple IOCTL command for escape operations.”,”published”:”2026-06-01T22:05:43.934Z”,”modified”:”2026-06-01T22:05:43.934Z”,”type”:”cve”,”title”:”Out-of-bounds Write in DSP Service”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/june-2026-bulletin.html”,”id”:”CVE-2026-25259″,”bulletinFamily”:””,”cwe”:[“CWE-787″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon Cologne\\nQualcomm, Inc. Snapdragon FastConnect 6900\\nQualcomm, Inc. Snapdragon FastConnect 7800\\nQualcomm, Inc. Snapdragon QCA0000\\nQualcomm, Inc. Snapdragon SC8380XP\\nQualcomm, Inc. Snapdragon WCD9378C\\nQualcomm, Inc. Snapdragon WCD9380\\nQualcomm, Inc. Snapdragon WCD9385\\nQualcomm, Inc. Snapdragon WSA8840\\nQualcomm, Inc. Snapdragon WSA8845\\nQualcomm, Inc. Snapdragon WSA8845H\\nQualcomm, Inc. Snapdragon X2000077\\nQualcomm, Inc. Snapdragon X2000086\\nQualcomm, Inc. Snapdragon X2000090\\nQualcomm, Inc. Snapdragon X2000092\\nQualcomm, Inc. Snapdragon X2000094\\nQualcomm, Inc. Snapdragon XG101002\\nQualcomm, Inc. Snapdragon XG101032\\nQualcomm, Inc. Snapdragon XG101039″,”sourceHref”:””,”cvss”:{“score”:7.8,”severity”:”HIGH”,”vector”:”CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Snapdragon”,”version”:”Cologne”,”vendor”:”Qualcomm, Inc.”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:””,”description”:”Memory corruption while processing multiple IOCTL command for escape operations.”,”published”:”2026-06-01T22:05:43.934Z”,”modified”:”2026-06-01T22:05:43.934Z”,”type”:”cve”,”title”:”Out-of-bounds Write in DSP Service”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/june-2026-bulletin.html”,”id”:”CVE-2026-25259″,”bulletinFamily”:””,”cwe”:[“CWE-787″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon Cologne\\nQualcomm, Inc. Snapdragon FastConnect 6900\\nQualcomm, Inc. Snapdragon FastConnect 7800\\nQualcomm,…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,28,12,15,13,7,11,5],"class_list":["post-59077","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-78","tag-exploit","tag-high","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\nOut-of-bounds Write in DSP Service_CVE-2026-25259 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=59077\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Out-of-bounds Write in DSP Service_CVE-2026-25259 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:””,”description”:”Memory corruption while processing multiple IOCTL command for escape operations.”,”published”:”2026-06-01T22:05:43.934Z”,”modified”:”2026-06-01T22:05:43.934Z”,”type”:”cve”,”title”:”Out-of-bounds Write in DSP Service”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/june-2026-bulletin.html”,”id”:”CVE-2026-25259″,”bulletinFamily”:””,”cwe”:[“CWE-787″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon ColognenQualcomm, Inc. Snapdragon FastConnect 6900nQualcomm, Inc. Snapdragon FastConnect 7800nQualcomm,...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=59077\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2026-06-01T19:07:47+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"Out-of-bounds Write in DSP Service_CVE-2026-25259\",\"datePublished\":\"2026-06-01T19:07:47+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077\"},\"wordCount\":214,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CVE\",\"CVSS\",\"CVSS-7.8\",\"exploit\",\"HIGH\",\"news\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_cve\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=59077#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077\",\"name\":\"Out-of-bounds Write in DSP Service_CVE-2026-25259 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2026-06-01T19:07:47+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=59077\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=59077#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Out-of-bounds Write in DSP Service_CVE-2026-25259\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Out-of-bounds Write in DSP Service_CVE-2026-25259 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=59077","og_locale":"en_US","og_type":"article","og_title":"Out-of-bounds Write in DSP Service_CVE-2026-25259 - zero redgem","og_description":"{“lastseen”:””,”description”:”Memory corruption while processing multiple IOCTL command for escape operations.”,”published”:”2026-06-01T22:05:43.934Z”,”modified”:”2026-06-01T22:05:43.934Z”,”type”:”cve”,”title”:”Out-of-bounds Write in DSP Service”,”source”:”qualcomm”,”references”:”https:\/\/docs.qualcomm.com\/product\/publicresources\/securitybulletin\/june-2026-bulletin.html”,”id”:”CVE-2026-25259″,”bulletinFamily”:””,”cwe”:[“CWE-787″],”cvelist”:null,”sourceData”:”Qualcomm, Inc. Snapdragon ColognenQualcomm, Inc. Snapdragon FastConnect 6900nQualcomm, Inc. Snapdragon FastConnect 7800nQualcomm,...","og_url":"https:\/\/zero.redgem.net\/?p=59077","og_site_name":"zero redgem","article_published_time":"2026-06-01T19:07:47+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"1 minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=59077#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=59077"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"Out-of-bounds Write in DSP Service_CVE-2026-25259","datePublished":"2026-06-01T19:07:47+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=59077"},"wordCount":214,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CVE","CVSS","CVSS-7.8","exploit","HIGH","news","Security","tapic","Vulnerability"],"articleSection":["category_cve"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=59077#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=59077","url":"https:\/\/zero.redgem.net\/?p=59077","name":"Out-of-bounds Write in DSP Service_CVE-2026-25259 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2026-06-01T19:07:47+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=59077#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=59077"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=59077#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"Out-of-bounds Write in DSP Service_CVE-2026-25259"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/59077","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=59077"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/59077\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=59077"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=59077"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=59077"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}