← Back

CVE-2017-18172

nvd nist
Published: Oct 23, 2018Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

In a device, with screen size 1440x2560, the check of contiguous buffer will overflow on certain buffer size resulting in an Integer Overflow or Wraparound in System UI in Snapdragon Automobile, Snapdragon Mobile in version MDM9635M, SD 400, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A, SD 835, SDM630, SDM636, SDM660, Snapdragon_High_Med_2016.

Affected (24)

Qualcomm
24 products
Mdm9635m Firmware
Sd 400 Firmware
Sd 410 Firmware
Sd 412 Firmware
Sd 425 Firmware
Sd 427 Firmware
Sd 430 Firmware
Sd 435 Firmware
Sd 450 Firmware
Sd 615 Firmware
Sd 616 Firmware
Sd 415 Firmware
Sd 625 Firmware
Sd 650 Firmware
Sd 652 Firmware
Sd 820 Firmware
Sd 835 Firmware
Sdm630 Firmware
Sdm636 Firmware
Sdm660 Firmware
Sd 617 Firmware
Sd 800 Firmware
Sd 810 Firmware
Sd 820a Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Mdm9635m Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Mdm9635m
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 400 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 400
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 410 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 410
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 412 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 412
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 425 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 425
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 427 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 427
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 430 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 430
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 435 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 435
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 450 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 450
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 615 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 615
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 616 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 616
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 415 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 415
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 625 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 625
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 650 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 650
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 652 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 652
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 835 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 835
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm630 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm630
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm636 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm636
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sdm660 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sdm660
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 617 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 617
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 800 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 800
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 810 Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 810
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sd 820a Firmware
All versions
Running on/withPlatform Versions
Qualcomm
Sd 820a
All versions

Related CWEs

CWE-190
Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

References (4)

Source: product-security@qualcomm.com
Vendor Advisory
Source: product-security@qualcomm.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.