CVEs-PoC/2017/CVE-2017-8260.md

### [CVE-2017-8260](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8260)
![](https://img.shields.io/static/v1?label=Product&message=All%20Qualcomm%20products&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=All%20Android%20releases%20from%20CAF%20using%20the%20Linux%20kernel%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Input%20Validation%20in%20Camera&color=brightgreen)

### Description

In all Qualcomm products with Android releases from CAF using the Linux kernel, due to a type downcast, a value may improperly pass validation and cause an out of bounds write later.

### POC

#### Reference
- https://github.com/ScottyBauer/Android_Kernel_CVE_POCs/blob/master/CVE-2017-8260.c

#### Github
No PoCs found on GitHub currently.