← Back to CVEs
CVE-2023-49927
MEDIUM5.3
Description
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the RRC. This can lead to a lack of encryption.
CVE Details
CVSS v3.1 Score5.3
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published6/5/2024
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
samsung:exynos_1080samsung:exynos_1080_firmwaresamsung:exynos_1280samsung:exynos_1280_firmwaresamsung:exynos_1330samsung:exynos_1330_firmwaresamsung:exynos_1380samsung:exynos_1380_firmwaresamsung:exynos_2100samsung:exynos_2100_firmwaresamsung:exynos_2200samsung:exynos_2200_firmwaresamsung:exynos_850samsung:exynos_850_firmwaresamsung:exynos_980samsung:exynos_980_firmwaresamsung:exynos_9820samsung:exynos_9820_firmwaresamsung:exynos_9825samsung:exynos_9825_firmwaresamsung:exynos_990samsung:exynos_990_firmwaresamsung:exynos_modem_5123samsung:exynos_modem_5123_firmwaresamsung:exynos_modem_5300samsung:exynos_modem_5300_firmware
Weaknesses (CWE)
CWE-311CWE-331
References
https://semiconductor.samsung.com/support/quality-support/product-security-updates/(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.