CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-28067
https://notcve.org/view.php?id=CVE-2024-28067
09 Jul 2024 — A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode of packets going to the victim, enabling the attacker to send messages to the victim in plaintext. • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-295: Improper Certificate Validation •
CVSS: 7.8EPSS: 0%CPEs: 22EXPL: 0CVE-2024-28818
https://notcve.org/view.php?id=CVE-2024-28818
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) module. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil, el procesador portátil, el procesador automotriz y el módem Samsun... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-284: Improper Access Control •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-49927
https://notcve.org/view.php?id=CVE-2023-49927
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the RRC. This can lead to a lack of encryption. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz, el procesador portátil y el módem Exynos 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-311: Missing Encryption of Sensitive Data CWE-331: Insufficient Entropy •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2023-49928
https://notcve.org/view.php?id=CVE-2023-49928
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz, el procesador portátil y el módem Exyno... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50803
https://notcve.org/view.php?id=CVE-2023-50803
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check replay protection specified by the NAS (Non-Access-Stratum) module. This can lead to denial of service. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 990,... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 5.3EPSS: 0%CPEs: 26EXPL: 0CVE-2023-50804
https://notcve.org/view.php?id=CVE-2023-50804
05 Jun 2024 — An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the NAS (Non-Access-Stratum) module. This can lead to bypass of authentication. Se descubrió un problema en el procesador móvil Samsung, el procesador automotriz y el módem Exynos 9820, 9825, 980, 99... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-287: Improper Authentication •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2024-29152
https://notcve.org/view.php?id=CVE-2024-29152
04 Jun 2024 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, and Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) Reconfiguration message. This can lead to disclosure of sensitive information. Se descubrió un problema en el procesador móvil, el procesador portátil, el procesador automot... • https://semiconductor.samsung.com/support/quality-support/product-security-updates •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2023-41111
https://notcve.org/view.php?id=CVE-2023-41111
08 Nov 2023 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123). Improper handling of a length parameter inconsistency can cause abnormal termination of a mobile phone. This occurs in the RLC task and RLC module. Se descubrió un problema en Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 98... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 32EXPL: 0CVE-2023-41112
https://notcve.org/view.php?id=CVE-2023-41112
08 Nov 2023 — An issue was discovered in Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123). A buffer copy, without checking the size of the input, can cause abnormal termination of a mobile phone. This occurs in the RLC task and RLC module. Se descubrió un problema en Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem (Exynos 9810, 9610, 9820, 9... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.3EPSS: 0%CPEs: 24EXPL: 0CVE-2023-37367
https://notcve.org/view.php?id=CVE-2023-37367
08 Sep 2023 — An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor, and Modem (Exynos 9820, Exynos 980, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. In the NAS Task, an improperly implemented security check for standard can disallow desired services for a while via consecutive NAS messages. Se descubrió un problema en el Procesador Móvil Samsung Exynos, el Procesador Automotive y el Módem ... • https://semiconductor.samsung.com/support/quality-support/product-security-updates • CWE-863: Incorrect Authorization •