CVE-2023-29089

Published: Apr 14, 2023Modified: Feb 7, 2025

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding SIP multipart messages.

Affected (6)

Products: Samsung: Exynos 5300 Firmware, Exynos 5123 Firmware, Exynos 980 Firmware, Exynos 9110 Firmware, Exynos 1080 Firmware, Exynos Auto T5123 Firmware

6 products

Exynos Auto T5123 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Exynos 5300 Firmware	All versions

Running on/with	Platform Versions
Samsung Exynos 5300	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Exynos 5123 Firmware	All versions

Running on/with	Platform Versions
Samsung Exynos 5123	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Exynos 980 Firmware	All versions

Running on/with	Platform Versions
Samsung Exynos 980	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Exynos 9110 Firmware	All versions

Running on/with	Platform Versions
Samsung Exynos 9110	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Exynos 1080 Firmware	All versions

Running on/with	Platform Versions
Samsung Exynos 1080	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Samsung Exynos Auto T5123 Firmware	All versions

Running on/with	Platform Versions
Samsung Exynos Auto T5123	All versions

Related CWEs

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (4)

http://packetstormsecurity.com/files/172292/Shannon-Baseband-Negative-Size-Memcpy-Out-Of-Bounds-Read.html

Source: cve@mitre.org

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Source: cve@mitre.org

Vendor Advisory

http://packetstormsecurity.com/files/172292/Shannon-Baseband-Negative-Size-Memcpy-Out-Of-Bounds-Read.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.