CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27374
https://notcve.org/view.php?id=CVE-2024-27374
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_publish_get_nl_params(), there is no input validation check on hal_req->service_specific_info_len coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_publish_get_nl_params(), no hay ninguna verificación de validación d... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27375
https://notcve.org/view.php?id=CVE-2024-27375
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_followup_get_nl_params(), there is no input validation check on hal_req->sdea_service_specific_info_len coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_followup_get_nl_params(), no hay ninguna verificación de valid... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write CWE-1288: Improper Validation of Consistency within Input •
CVSS: 8.4EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27372
https://notcve.org/view.php?id=CVE-2024-27372
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_config_get_nl_params(), there is no input validation check on disc_attr->infrastructure_ssid_len coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_config_get_nl_params(), no hay ninguna verificación de validación de ... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27377
https://notcve.org/view.php?id=CVE-2024-27377
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_get_security_info_nl(), there is no input validation check on sec_info->key_info.body.pmk_info.pmk_len coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_get_security_info_nl(), no hay ninguna verificación de validaci... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27370
https://notcve.org/view.php?id=CVE-2024-27370
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_config_get_nl_params(), there is no input validation check on hal_req->num_config_discovery_attr coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_config_get_nl_params(), no hay ninguna verificación de validación de ... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 6.0EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27381
https://notcve.org/view.php?id=CVE-2024-27381
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame_ut(), there is no input validation check on len coming from userspace, which can lead to a heap over-read. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_send_action_frame_ut(), no hay ninguna verificación de validación de entrada en len procedente del espacio d... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27382
https://notcve.org/view.php?id=CVE-2024-27382
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame(), there is no input validation check on len coming from userspace, which can lead to a heap over-read. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_send_action_frame(), no hay ninguna verificación de validación de entrada en len proveniente del espacio de usu... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27378
https://notcve.org/view.php?id=CVE-2024-27378
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame_cert(), there is no input validation check on len coming from userspace, which can lead to a heap over-read. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_send_action_frame_cert(), no hay ninguna verificación de validación de entrada en len procedente del espac... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27376
https://notcve.org/view.php?id=CVE-2024-27376
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_subscribe_get_nl_params(), there is no input validation check on hal_req->rx_match_filter_len coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_subscribe_get_nl_params(), no hay ninguna verificación de validación de ... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 6.0EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27380
https://notcve.org/view.php?id=CVE-2024-27380
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_set_delayed_wakeup_type(), there is no input validation check on a length of ioctl_args->args[i] coming from userspace, which can lead to a heap over-read. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_set_delayed_wakeup_type(), no hay ninguna verificación de validación de entra... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-125: Out-of-bounds Read •