In Android prior to 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, SD 400, SD 425, SD 430, SD 450, SD 600, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, and SDX20, in the Diag User-PD command registration function, a length variable used during buffer allocation is not checked, so if it is very large, an integer overflow followed by a buffer overflow occurs.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
qualcomm mdm9625 firmware - |
||
qualcomm mdm9635m firmware - |
||
qualcomm mdm9640 firmware - |
||
qualcomm mdm9645 firmware - |
||
qualcomm mdm9650 firmware - |
||
qualcomm mdm9655 firmware - |
||
qualcomm sd 400 firmware - |
||
qualcomm sd 425 firmware - |
||
qualcomm sd 430 firmware - |
||
qualcomm sd 450 firmware - |
||
qualcomm sd 600 firmware - |
||
qualcomm sd 617 firmware - |
||
qualcomm sd 625 firmware - |
||
qualcomm sd 650 firmware - |
||
qualcomm sd 652 firmware - |
||
qualcomm sd 800 firmware - |
||
qualcomm sd 808 firmware - |
||
qualcomm sd 810 firmware - |
||
qualcomm sd 820 firmware - |
||
qualcomm sd 835 firmware - |
||
qualcomm sd 845 firmware - |
||
qualcomm sdx20 firmware - |
||
qualcomm sd 850 firmware - |
||
qualcomm sd 820a firmware - |
Vulmon