Integer Underflow Vulnerability in Snapdragon Processors

Integer Underflow Vulnerability in Snapdragon Processors

CVE-2017-18278 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer overflow, in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850.

Learn more about our Mobile App Penetration Testing.