CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-44068
https://notcve.org/view.php?id=CVE-2024-44068
07 Oct 2024 — An issue was discovered in the m2m scaler driver in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850,and W920. A Use-After-Free in the mobile processor leads to privilege escalation. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0CVE-2023-50806
https://notcve.org/view.php?id=CVE-2023-50806
09 Jul 2024 — A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850 Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380 Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, Exynos Modem 5300 that allows out-of-bounds access to a heap buffer in the SIM Proactive Command. Se descubrió una vulnerabilidad en el procesador móvil, procesador portátil y módems de Samsung con versiones Exy... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-122: Heap-based Buffer Overflow CWE-125: Out-of-bounds Read •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-49927
https://notcve.org/view.php?id=CVE-2023-49927
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the RRC. This can lead to a lack of encryption. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz, el procesador portátil y el módem Exynos 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-311: Missing Encryption of Sensitive Data CWE-331: Insufficient Entropy •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2023-49928
https://notcve.org/view.php?id=CVE-2023-49928
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz, el procesador portátil y el módem Exyno... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50803
https://notcve.org/view.php?id=CVE-2023-50803
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check replay protection specified by the NAS (Non-Access-Stratum) module. This can lead to denial of service. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 990,... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50804
https://notcve.org/view.php?id=CVE-2023-50804
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the NAS (Non-Access-Stratum) module. This can lead to bypass of authentication. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-287: Improper Authentication •