← Back

CVE-2023-26075

nvd nist
Published: Mar 10, 2023Modified: Feb 27, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G MM message codec can occur due to insufficient parameter validation when decoding the Service Area List.

Affected (9)

Samsung
9 products
Exynos 850 Firmware
Exynos 980 Firmware
Exynos 1080 Firmware
Exynos 1280 Firmware
Exynos 2200 Firmware
Exynos Modem 5123 Firmware
Exynos Modem 5300 Firmware
Exynos Auto T5123 Firmware
Exynos W920 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 850 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 850
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 980 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 980
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 1080 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 1080
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 1280 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 1280
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 2200 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 2200
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos Modem 5123 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos Modem 5123
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos Modem 5300 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos Modem 5300
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos Auto T5123 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos Auto T5123
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos W920 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos W920
All versions

Related CWEs

CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (13)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Product
Source: cve@mitre.org
Product
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Timeline

No history available yet.