CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27378
https://notcve.org/view.php?id=CVE-2024-27378
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame_cert(), there is no input validation check on len coming from userspace, which can lead to a heap over-read. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_send_action_frame_cert(), no hay ninguna verificación de validación de entrada en len procedente del espac... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27376
https://notcve.org/view.php?id=CVE-2024-27376
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_subscribe_get_nl_params(), there is no input validation check on hal_req->rx_match_filter_len coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_subscribe_get_nl_params(), no hay ninguna verificación de validación de ... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 6.0EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27380
https://notcve.org/view.php?id=CVE-2024-27380
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_set_delayed_wakeup_type(), there is no input validation check on a length of ioctl_args->args[i] coming from userspace, which can lead to a heap over-read. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_set_delayed_wakeup_type(), no hay ninguna verificación de validación de entra... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2024-27379
https://notcve.org/view.php?id=CVE-2024-27379
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_subscribe_get_nl_params(), there is no input validation check on hal_req->num_intf_addr_present coming from userspace, which can lead to a heap overwrite. Se descubrió un problema en el procesador móvil Samsung Exynos 980, Exynos 850, Exynos 1280, Exynos 1380 y Exynos 1330. En la función slsi_nan_subscribe_get_nl_params(), no hay ninguna verificación de validación d... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-49927
https://notcve.org/view.php?id=CVE-2023-49927
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the RRC. This can lead to a lack of encryption. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz, el procesador portátil y el módem Exynos 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-311: Missing Encryption of Sensitive Data CWE-331: Insufficient Entropy •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2023-49928
https://notcve.org/view.php?id=CVE-2023-49928
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz, el procesador portátil y el módem Exyno... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50803
https://notcve.org/view.php?id=CVE-2023-50803
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check replay protection specified by the NAS (Non-Access-Stratum) module. This can lead to denial of service. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 990,... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50804
https://notcve.org/view.php?id=CVE-2023-50804
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the NAS (Non-Access-Stratum) module. This can lead to bypass of authentication. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2024-29152
https://notcve.org/view.php?id=CVE-2024-29152
04 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, and Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) Reconfiguration message. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil, el procesador portátil, el procesador automot... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 4.9EPSS: 0%CPEs: 18EXPL: 0CVE-2023-43122
https://notcve.org/view.php?id=CVE-2023-43122
13 Dec 2023 — Samsung Mobile Processor and Wearable Processor (Exynos 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, and W920) allow Information Disclosure in the Bootloader. El procesador móvil y el procesador portátil de Samsung (Exynos 980, 850, 1080, 2100, 2200, 1280, 1380, 1330 y W920) permiten la divulgación de información en el gestor de arranque. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •