CyberSec.Space Logo
Back to CVE Browser

CVE-2017-17773

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1890%
EPSS Percentile14.32th
PublishedMar 15, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

In Snapdragon Automobile, Snapdragon Wearable and Snapdragon Mobile MDM9206,MDM9607,MDM9650,SD 210/SD 212/SD 205,SD 400,SD 410/12,SD 425,SD 430,SD 450,SD 600,SD 602A,SD 615/16/SD 415,SD 617,SD 625,SD 650/52,SD 800,SD 808,SD 810,SD 820,SD 820Am,SD 835,SD 845,MSM8909W, improper input validation in video_fmt_mp4r_process_atom_avc1() causes a potential buffer overflow.

Affected Platforms (CPE)

πŸ’»
Qualcomm

Mdm9206 Firmware

All versions
πŸ’»
Qualcomm

Mdm9607 Firmware

All versions
πŸ’»
Qualcomm

Mdm9650 Firmware

All versions
πŸ’»
Qualcomm

Sd 210 Firmware

All versions
πŸ’»
Qualcomm

Sd 212 Firmware

All versions
πŸ’»
Qualcomm

Sd 412 Firmware

All versions
πŸ’»
Qualcomm

Sd 410 Firmware

All versions
πŸ’»
Qualcomm

Sd 425 Firmware

All versions
πŸ’»
Qualcomm

Sd 430 Firmware

All versions
πŸ’»
Qualcomm

Sd 616 Firmware

All versions
πŸ’»
Qualcomm

Sd 615 Firmware

All versions
πŸ’»
Qualcomm

Sd 415 Firmware

All versions
πŸ’»
Qualcomm

Sd 617 Firmware

All versions
πŸ’»
Qualcomm

Sd 625 Firmware

All versions
πŸ’»
Qualcomm

Sd 650 Firmware

All versions
πŸ’»
Qualcomm

Sd 652 Firmware

All versions
πŸ’»
Qualcomm

Sd 820 Firmware

All versions
πŸ’»
Qualcomm

S820am Firmware

All versions
πŸ’»
Qualcomm

Sd 835 Firmware

All versions
πŸ’»
Qualcomm

Sd 845 Firmware

All versions
πŸ’»
Qualcomm

Sd 205 Firmware

All versions
πŸ’»
Qualcomm

Sd 400 Firmware

All versions
πŸ’»
Qualcomm

Sd 450 Firmware

All versions
πŸ’»
Qualcomm

Sd 600 Firmware

All versions
πŸ’»
Qualcomm

Sd 602a Firmware

All versions
πŸ’»
Qualcomm

Sd 800 Firmware

All versions
πŸ’»
Qualcomm

Sd 808 Firmware

All versions
πŸ’»
Qualcomm

Sd 810 Firmware

All versions
πŸ’»
Qualcomm

Msm8909w Firmware

All versions

References & Advisories

πŸ”— http://www.securityfocus.com/bid/103292
πŸ”— https://source.android.com/security/bulletin/2018-03-01
πŸ”— http://www.securityfocus.com/bid/103292
πŸ”— https://source.android.com/security/bulletin/2018-03-01

Related Vulnerabilities

CVE-2019-23099.8

While storing calibrated data from firmware in cache, An integer overflow may occur since data length received may exceed real dat...

CVE-2019-105429.8

Buffer over-read may occur when downloading a corrupted firmware file that has chunk length in header which doesn`t match the cont...

CVE-2019-22879.8

Improper validation for inputs received from firmware can lead to an out of bound write issue in video driver. in Snapdragon Auto,...

CVE-2019-105729.8

Improper check in video driver while processing data from video firmware can lead to integer overflow and then buffer overflow in ...