CVE-2023-49928

HIGH

7.5

Description

An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC. This can lead to disclosure of sensitive information.

Details CVE

Score CVSS v3.17.5

SeveriteHIGH

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie6/5/2024

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

samsung:exynos_1080samsung:exynos_1080_firmwaresamsung:exynos_1280samsung:exynos_1280_firmwaresamsung:exynos_1330samsung:exynos_1330_firmwaresamsung:exynos_1380samsung:exynos_1380_firmwaresamsung:exynos_2100samsung:exynos_2100_firmwaresamsung:exynos_2200samsung:exynos_2200_firmwaresamsung:exynos_850samsung:exynos_850_firmwaresamsung:exynos_980samsung:exynos_980_firmwaresamsung:exynos_9820samsung:exynos_9820_firmwaresamsung:exynos_9825samsung:exynos_9825_firmwaresamsung:exynos_990samsung:exynos_990_firmwaresamsung:exynos_modem_5123samsung:exynos_modem_5123_firmwaresamsung:exynos_modem_5300samsung:exynos_modem_5300_firmware

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/(cve@mitre.org)

https://semiconductor.samsung.com/support/quality-support/product-security-updates/(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.