CVE-2017-18279

2019-05-0622:58:17

qualcomm

www.cve.org

0.0004 Low

EPSS

Percentile

12.7%

JSON

Lack of check of buffer length before copying can lead to buffer overflow in camera module in Small Cell SoC, Snapdragon Mobile, Snapdragon Wear in FSM9055, FSM9955, IPQ4019, IPQ8064, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 835, SDM630, SDM636, SDM660, SDX20, Snapdragon_High_Med_2016.

CNA Affected

[
  {
    "product": "Small Cell SoC, Snapdragon Mobile, Snapdragon Wear",
    "vendor": "Qualcomm Technologies, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "FSM9055"
      },
      {
        "status": "affected",
        "version": "FSM9955"
      },
      {
        "status": "affected",
        "version": "IPQ4019"
      },
      {
        "status": "affected",
        "version": "IPQ8064"
      },
      {
        "status": "affected",
        "version": "MDM9206"
      },
      {
        "status": "affected",
        "version": "MDM9607"
      },
      {
        "status": "affected",
        "version": "MDM9640"
      },
      {
        "status": "affected",
        "version": "MDM9650"
      },
      {
        "status": "affected",
        "version": "MSM8909W"
      },
      {
        "status": "affected",
        "version": "MSM8996AU"
      },
      {
        "status": "affected",
        "version": "QCA9531"
      },
      {
        "status": "affected",
        "version": "QCA9558"
      },
      {
        "status": "affected",
        "version": "QCA9563"
      },
      {
        "status": "affected",
        "version": "QCA9880"
      },
      {
        "status": "affected",
        "version": "QCA9886"
      },
      {
        "status": "affected",
        "version": "QCA9980"
      },
      {
        "status": "affected",
        "version": "SD 210/SD 212/SD 205"
      },
      {
        "status": "affected",
        "version": "SD 425"
      },
      {
        "status": "affected",
        "version": "SD 427"
      },
      {
        "status": "affected",
        "version": "SD 430"
      },
      {
        "status": "affected",
        "version": "SD 435"
      },
      {
        "status": "affected",
        "version": "SD 450"
      },
      {
        "status": "affected",
        "version": "SD 615/16/SD 415"
      },
      {
        "status": "affected",
        "version": "SD 625"
      },
      {
        "status": "affected",
        "version": "SD 650/52"
      },
      {
        "status": "affected",
        "version": "SD 800"
      },
      {
        "status": "affected",
        "version": "SD 810"
      },
      {
        "status": "affected",
        "version": "SD 820"
      },
      {
        "status": "affected",
        "version": "SD 835"
      },
      {
        "status": "affected",
        "version": "SDM630"
      },
      {
        "status": "affected",
        "version": "SDM636"
      },
      {
        "status": "affected",
        "version": "SDM660"
      },
      {
        "status": "affected",
        "version": "SDX20"
      },
      {
        "status": "affected",
        "version": "Snapdragon_High_Med_2016"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVELIST:CVE-2017-18279