Qualcomm Zero-Day Exploited in Targeted Android Attacks

Qualcomm kernel flaw CVE-2026-21385 exploited in targeted Android attacks, requiring urgent patches to prevent rapid spread.

By Content Team

Mar 4, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A Qualcomm graphics kernel vulnerability (CVE-2026-21385) is being exploited in "limited, targeted" attacks against Android devices. Google's March security bulletin flagged this high-severity flaw, which affects multiple chipsets and earned a 7.8 CVSS score.

Security experts believe the "limited, targeted" language suggests nation-state actors or commercial spyware vendors are behind the attacks, similar to previous Qualcomm zero-days linked to surveillance tools. The vulnerability requires local access and causes memory corruption during allocation.

Another critical flaw (CVE-2026-0047) allows privilege escalation without user interaction, though it needs existing device access. Patches are available through Qualcomm and Android's open source project, but users must wait for device manufacturers to deploy updates—a delay that matters when exploits spread rapidly.

Source: Dark Reading

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Tennessee Man Pleads Guilty to Hacking Supreme Court Filing System 25 Times

Jan 18, 2026

Critical BeyondTrust Flaw Gives Attackers Full Domain Control

Feb 16, 2026

Booking.com Hack Fuels 'Reservation Hijack' Scam Wave

Apr 29, 2026

Hundreds of Thousands Hit in Kensington and Chelsea Council Cyber Attack

Jan 15, 2026