CVSS: 10.0EPSS: 0%CPEs: 18EXPL: 1CVE-2023-26075 – Shannon Baseband NrmmMsgCodec Intra-Object Overflow
https://notcve.org/view.php?id=CVE-2023-26075
10 Mar 2023 — An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G MM message codec can occur due to insufficient parameter validation when decoding the Service Area List. There is an intra-object overflow in Shannon Baseband, inside the 5G MM protocol implementation (NrmmMsgCodec as it is called in Shannon according to debug strings), s... • https://packetstorm.news/files/id/171387 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-39901
https://notcve.org/view.php?id=CVE-2022-39901
08 Dec 2022 — Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and gNodeB. La autenticación incorrecta en la banda base de Exynos antes de SMR DEC-2022 Versión 1 permite a un atacante remoto desactivar el cifrado del tráfico de red entre UE y gNodeB. • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=12 • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-39902
https://notcve.org/view.php?id=CVE-2022-39902
08 Dec 2022 — Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency call. La autorización inadecuada en Exynos baseband antes de SMR DEC-2022 Versión 1 permite a un atacante remoto obtener información confidencial, incluido IMEI, a través de una llamada de emergencia. • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=12 • CWE-285: Improper Authorization •
CVSS: 9.4EPSS: 0%CPEs: 2EXPL: 0CVE-2022-39881
https://notcve.org/view.php?id=CVE-2022-39881
09 Nov 2022 — Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory. Una vulnerabilidad de validación de entrada incorrecta para procesar la PDU SIB12 en módems Exynos antes de la versión SMR de septiembre de 2022 permite a un atacante remoto leer memoria fuera de límites. • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=11 • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-39854
https://notcve.org/view.php?id=CVE-2022-39854
07 Oct 2022 — Improper protection in IOMMU prior to SMR Oct-2022 Release 1 allows unauthorized access to secure memory. Una protección inapropiada en IOMMU versiones anteriores a SMR Oct-2022 Release 1, permite el acceso no autorizado a la memoria segura • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=10 • CWE-284: Improper Access Control •
CVSS: 6.2EPSS: 0%CPEs: 4EXPL: 0CVE-2022-33691
https://notcve.org/view.php?id=CVE-2022-33691
11 Jul 2022 — A possible race condition vulnerability in score driver prior to SMR Jul-2022 Release 1 can allow local attackers to interleave malicious operations. Una posible vulnerabilidad de condición de carrera en score driver versiones anteriores a SMR Jul-2022 Release 1, puede permitir a atacantes locales intercalar operaciones maliciosas • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=7 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.0EPSS: 0%CPEs: 6EXPL: 0CVE-2022-27834
https://notcve.org/view.php?id=CVE-2022-27834
11 Apr 2022 — Use after free vulnerability in dsp_context_unload_graph function of DSP driver prior to SMR Apr-2022 Release 1 allows attackers to perform malicious actions. La vulnerabilidad de Uso de memoria previamente liberada en la función dsp_context_unload_graph del controlador DSP versiones anteriores a SMR Apr-2022 Release 1, permite a atacantes llevar a cabo acciones maliciosas • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=4 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2022-27833
https://notcve.org/view.php?id=CVE-2022-27833
11 Apr 2022 — Improper input validation in DSP driver prior to SMR Apr-2022 Release 1 allows out-of-bounds write by integer overflow. Una comprobación de entrada inapropiada en el controlador DSP versiones anteriores a SMR Apr-2022 Release 1, permite una escritura fuera de límites por desbordamiento de enteros • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=4 • CWE-20: Improper Input Validation CWE-190: Integer Overflow or Wraparound •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2022-25821
https://notcve.org/view.php?id=CVE-2022-25821
08 Mar 2022 — Improper use of SMS buffer pointer in Shannon baseband prior to SMR Mar-2022 Release 1 allows OOB read. Un uso inapropiado del puntero del búfer de SMS en Shannon baseband versiones anteriores a 1 de SMR Mar-2022, permite una lectura de OOB • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=3 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-25819
https://notcve.org/view.php?id=CVE-2022-25819
08 Mar 2022 — OOB read vulnerability in hdcp2 device node prior to SMR Mar-2022 Release 1 allow an attacker to view Kernel stack memory. Una vulnerabilidad de lectura OOB en el nodo del dispositivo hdcp2 versiones anteriores a 1 de SMR Mar-2022, permite a un atacante visualizar la memoria de la pila del Kernel • https://security.samsungmobile.com/securityUpdate.smsb?year=2022&month=3 • CWE-125: Out-of-bounds Read •