CVE-2017-15823
Description
In spectral_create_samp_msg() in Android for MSM, Firefox OS for MSM, and QRD Android before 2017-10-11, some values from firmware are not properly validated potentially leading to a buffer overflow.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
In Android/MSM/QRD firmware before 2017-10-11, spectral_create_samp_msg() lacks input validation, enabling a buffer overflow.
Vulnerability
In spectral_create_samp_msg() within Android for MSM, Firefox OS for MSM, and QRD Android prior to 2017-10-11, values received from firmware are not properly validated, leading to a potential buffer overflow. The affected code path is reachable when the firmware supplies crafted data to this function.
Exploitation
An attacker with the ability to control firmware input (e.g., via a compromised modem or baseband) can supply oversized or malformed values. No additional authentication or user interaction is required; the overflow occurs during message creation in kernel or driver context.
Impact
Successful exploitation results in memory corruption beyond the intended buffer, which may cause denial of service or arbitrary code execution at the kernel privilege level, compromising the entire device.
Mitigation
A fix was included in the Pixel/Nexus Security Bulletin—February 2018 (reference [1]), targeting Android builds after 2017-10-11. For other affected platforms (Firefox OS, QRD Android), updates should follow vendor advisories. No workaround is publicly documented; applying the patch is the sole mitigation.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: < 2017-10-11
- Qualcomm, Inc./Android for MSM, Firefox OS for MSM, QRD Androidv5Range: All Android releases from CAF using the Linux kernel
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- source.android.com/security/bulletin/pixel/2018-02-01mitrex_refsource_CONFIRM
- source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.