cve/2017/CVE-2017-18173.md

### [CVE-2017-18173](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18173)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Mobile&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE190%3A%20Integer%20Overflow%20or%20Wraparound&color=brighgreen)

### Description

In case of using an invalid android verified boot signature with very large length, an integer underflow occurs in Snapdragon Mobile in SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 810, SD 820, SD 835, SDM630, SDM636, SDM660, Snapdragon_High_Med_2016.

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins

#### Github
- https://github.com/ARPSyndicate/cvemon
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2017-18173](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18173)`
			`![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Mobile&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE190%3A%20Integer%20Overflow%20or%20Wraparound&color=brighgreen)`

			`### Description`

			`In case of using an invalid android verified boot signature with very large length, an integer underflow occurs in Snapdragon Mobile in SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 810, SD 820, SD 835, SDM630, SDM636, SDM660, Snapdragon_High_Med_2016.`

			`### POC`

			`#### Reference`
			`- https://www.qualcomm.com/company/product-security/bulletins`

			`#### Github`
			`- https://github.com/ARPSyndicate/cvemon`