CVE-2017-18173
N/A
N/A
Summary
In case of using an invalid android verified boot signature with very large length, an integer underflow occurs in Snapdragon Mobile in SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 810, SD 820, SD 835, SDM630, SDM636, SDM660, Snapdragon_High_Med_2016.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 425 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 427 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 430 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 435 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 450 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 625 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 810 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 820 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SD 835 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SDM630 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SDM636 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | SDM660 | affected |
| Qualcomm Technologies, Inc. | Snapdragon Mobile | Snapdragon_High_Med_2016 | affected |
Weaknesses
- CWE190: Integer Overflow or Wraparound
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.