CVE-2024-46921

Severity Score

6.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

An issue was discovered in Samsung Mobile Processor and Modem Exynos 9820, 9825, 980, 990, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W1000, Modem 5123, Modem 5300, Modem 5400. UE does not limit the number of attempts for the RRC Setup procedure in the 5G SA, leading to a denial of service (battery-drain attack).

*Credits: N/A

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

Poc

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-09-15 CVE Reserved
2025-01-13 CVE Published
2025-01-31 CVE Updated
2025-06-23 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-770: Allocation of Resources Without Limits or Throttling

CAPEC

References (2)

URL	Tag	Source
https://semiconductor.samsung.com/support/quality-support/product-security-updates
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-46921

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Samsung Search vendor "Samsung"		Exynos 1080 Firmware Search vendor "Samsung" for product "Exynos 1080 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 1280 Firmware Search vendor "Samsung" for product "Exynos 1280 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 1330 Firmware Search vendor "Samsung" for product "Exynos 1330 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 1380 Firmware Search vendor "Samsung" for product "Exynos 1380 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 1480 Firmware Search vendor "Samsung" for product "Exynos 1480 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 2100 Firmware Search vendor "Samsung" for product "Exynos 2100 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 2200 Firmware Search vendor "Samsung" for product "Exynos 2200 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 2400 Firmware Search vendor "Samsung" for product "Exynos 2400 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 9110 Firmware Search vendor "Samsung" for product "Exynos 9110 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 980 Firmware Search vendor "Samsung" for product "Exynos 980 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 9820 Firmware Search vendor "Samsung" for product "Exynos 9820 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 9825 Firmware Search vendor "Samsung" for product "Exynos 9825 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos 990 Firmware Search vendor "Samsung" for product "Exynos 990 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos Modem 5123 Firmware Search vendor "Samsung" for product "Exynos Modem 5123 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos Modem 5300 Firmware Search vendor "Samsung" for product "Exynos Modem 5300 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos Modem 5400 Firmware Search vendor "Samsung" for product "Exynos Modem 5400 Firmware"				*		-		Affected
Samsung Search vendor "Samsung"		Exynos W1000 Firmware Search vendor "Samsung" for product "Exynos W1000 Firmware"				*		-		Affected