← back
CVE-2017-18294

CVE-2017-18294

EPSS 0.3%
While reading file class type from ELF header, a buffer overread may happen if the ELF file size is less than the size of ELF64 header size in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version FSM9055, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SDA660, SDX20.
Affected products
Qualcomm, Inc. · Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://source.android.com/security/bulletin/2018-08-01#qualcomm-closed-source-componentshttps://www.qualcomm.com/company/product-security/bulletinshttp://www.securitytracker.com/id/1041432