CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50804
https://notcve.org/view.php?id=CVE-2023-50804
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the NAS (Non-Access-Stratum) module. This can lead to bypass of authentication. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2024-29152
https://notcve.org/view.php?id=CVE-2024-29152
04 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, and Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) Reconfiguration message. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil, el procesador portátil, el procesador automot... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 4.9EPSS: 0%CPEs: 18EXPL: 0CVE-2023-43122
https://notcve.org/view.php?id=CVE-2023-43122
13 Dec 2023 — Samsung Mobile Processor and Wearable Processor (Exynos 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, and W920) allow Information Disclosure in the Bootloader. El procesador móvil y el procesador portátil de Samsung (Exynos 980, 850, 1080, 2100, 2200, 1280, 1380, 1330 y W920) permiten la divulgación de información en el gestor de arranque. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 4.7EPSS: 0%CPEs: 14EXPL: 0CVE-2023-45864
https://notcve.org/view.php?id=CVE-2023-45864
13 Dec 2023 — A race condition issue discovered in Samsung Mobile Processor Exynos 9820, 980, 1080, 2100, 2200, 1280, and 1380 allows unintended modifications of values within certain areas. Un problema de condición de ejecución descubierto en el procesador móvil Samsung Exynos 9820, 980, 1080, 2100, 2200, 1280 y 1380 permite modificaciones no deseadas de valores dentro de ciertas áreas. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 6.3EPSS: 0%CPEs: 14EXPL: 0CVE-2023-42483
https://notcve.org/view.php?id=CVE-2023-42483
13 Dec 2023 — A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, and Exynos 1380 can cause unexpected termination of a system. Una condición de ejecución TOCTOU en el procesador móvil Samsung Exynos 9820, Exynos 980, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280 y Exynos 1380 puede provocar la terminación inesperada de un sistema. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2023-41111
https://notcve.org/view.php?id=CVE-2023-41111
08 Nov 2023 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123). Improper handling of a length parameter inconsistency can cause abnormal termination of a mobile phone. This occurs in the RLC task and RLC module. Se descubrió un problema en Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 98... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2023-41112
https://notcve.org/view.php?id=CVE-2023-41112
08 Nov 2023 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123). A buffer copy, without checking the size of the input, can cause abnormal termination of a mobile phone. This occurs in the RLC task and RLC module. Se descubrió un problema en Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 9... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-41911
https://notcve.org/view.php?id=CVE-2023-41911
28 Sep 2023 — Samsung Mobile Processor Exynos 2200 allows a GPU Double Free (issue 1 of 2). Samsung Mobile Processor Exynos 2200 permite una GPU Double Free (problema 1 of 2). • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-42482
https://notcve.org/view.php?id=CVE-2023-42482
21 Sep 2023 — Samsung Mobile Processor Exynos 2200 allows a GPU Use After Free. El Procesador Móvil Samsung Exynos 2200 permite el uso de GPU Use After Free. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-416: Use After Free •
CVSS: 3.3EPSS: 0%CPEs: 12EXPL: 0CVE-2023-40218
https://notcve.org/view.php?id=CVE-2023-40218
12 Sep 2023 — An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application. Se descubrió un problema en el controlador del kernel NPU en los procesadores móviles Samsung Exynos 9820, 980, 2100, 2200, 1280 y 1380. Un Desbordamiento de Enteros puede evitar la detección de casos de error a través de una aplicación manipulada. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-190: Integer Overflow or Wraparound •