CVE-2017-18274

2019-05-0622:37:54

qualcomm

www.cve.org

0.0004 Low

EPSS

Percentile

12.7%

JSON

While iterating through the models contained in a fixed-size array in the actData structure, which also stores an incorrect number of models that is greater than the size of the array, a buffer overflow occurs in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 617, SD 625, SD 650/52, SD 820, SD 820A, SD 835

CNA Affected

[
  {
    "product": "Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear",
    "vendor": "Qualcomm Technologies, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "MDM9206"
      },
      {
        "status": "affected",
        "version": "MDM9607"
      },
      {
        "status": "affected",
        "version": "MDM9650"
      },
      {
        "status": "affected",
        "version": "SD 210/SD 212/SD 205"
      },
      {
        "status": "affected",
        "version": "SD 425"
      },
      {
        "status": "affected",
        "version": "SD 430"
      },
      {
        "status": "affected",
        "version": "SD 450"
      },
      {
        "status": "affected",
        "version": "SD 617"
      },
      {
        "status": "affected",
        "version": "SD 625"
      },
      {
        "status": "affected",
        "version": "SD 650/52"
      },
      {
        "status": "affected",
        "version": "SD 820"
      },
      {
        "status": "affected",
        "version": "SD 820A"
      },
      {
        "status": "affected",
        "version": "SD 835"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVELIST:CVE-2017-18274