CVE-2017-17772— Multiple buffer overread vulnerabilities in WLAN

CVSS 8.8 · Critical EPSS 0.21% · P43 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-17772

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Multiple buffer overread vulnerabilities in WLAN

Source: NVD (National Vulnerability Database)

Vulnerability Description

In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

缓冲区上溢读取

Source: NVD (National Vulnerability Database)

Vulnerability Title

Android 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Android是美国谷歌（Google）和开放手持设备联盟（简称OHA）的一套以Linux为基础的开源操作系统。 Android中的WLAN HOST组件存在安全漏洞。目前尚无此漏洞的相关信息，请随时关注CNNVD或厂商公告。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Qualcomm, Inc.	Snapdragon	SD 450	-

II. Public POCs for CVE-2017-17772

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-17772

请登录查看更多情报信息。

Same Patch Batch · Qualcomm, Inc. · 2024-11-26 · 12 CVEs total

CVE-2016-10394	9.8 CRITICAL	Improper Authentication in Core
CVE-2017-11076	8.8 HIGH	Use of Out-of-range Pointer Offset in Video
CVE-2017-18306	8.4 HIGH	Information Exposure in Camera Driver
CVE-2017-18307	8.4 HIGH	Information Exposure in Kernel
CVE-2018-5852	8.4 HIGH	Buffer Over-read in IPA
CVE-2017-15832	7.8 HIGH	Buffer overwrite due to improper input validation in WLAN host
CVE-2018-11952	7.8 HIGH	Improper Authentication in TrustZone
CVE-2016-10408	7.8 HIGH	Improper Access Control in Core.
CVE-2018-11816	7.8 HIGH	Use After Free in Video
CVE-2018-11922	7.5 HIGH	Configurations in Android Build
CVE-2017-18153	6.8 MEDIUM	Use After Free in WLAN

IV. Related Vulnerabilities

Same product: Snapdragon

Same vendor: Qualcomm, Inc.

Same weakness: CWE-126

V. Comments for CVE-2017-17772

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-17772— Multiple buffer overread vulnerabilities in WLAN

I. Basic Information for CVE-2017-17772

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-17772

III. Intelligence Information for CVE-2017-17772

Same Patch Batch · Qualcomm, Inc. · 2024-11-26 · 12 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2017-17772

Leave a comment