CVE-2023-24033

The Samsung Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, and Exynos Auto T512 baseband modem chipsets do not properly check format types specified by the Session Description Protocol (SDP) module, which can lead to a denial of service.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://packetstormsecurity.com/files/172137/Shannon-Baseband-accept-type-SDP-Attribute-Memory-Corruption.html
https://semiconductor.samsung.com/processor/modem/	Product
https://semiconductor.samsung.com/support/quality-support/product-security-updates/	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:h:samsung:exynos_modem_5300:-:*:*:*:*:*:*:*

cpe:2.3:o:samsung:exynos_modem_5300_firmware:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:h:samsung:exynos_modem_5123:-:*:*:*:*:*:*:*

cpe:2.3:o:samsung:exynos_modem_5123_firmware:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*

cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*

cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:h:samsung:exynos_auto_t5123:-:*:*:*:*:*:*:*

cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-03-13 12:15

Updated : 2023-05-04 17:15

NVD link : CVE-2023-24033

Mitre link : CVE-2023-24033

CVE.ORG link : CVE-2023-24033

JSON object : View

Products Affected

samsung

exynos_1080
exynos_auto_t5123_firmware
exynos_980
exynos_1080_firmware
exynos_modem_5300
exynos_980_firmware
exynos_modem_5300_firmware
exynos_modem_5123
exynos_auto_t5123
exynos_modem_5123_firmware

CWE

NVD-CWE-noinfo

{"id": "CVE-2023-24033", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2023-03-13T12:15:11.160", "references": [{"url": "http://packetstormsecurity.com/files/172137/Shannon-Baseband-accept-type-SDP-Attribute-Memory-Corruption.html", "source": "cve@mitre.org"}, {"url": "https://semiconductor.samsung.com/processor/modem/", "tags": ["Product"], "source": "cve@mitre.org"}, {"url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "The Samsung Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, and Exynos Auto T512 baseband modem chipsets do not properly check format types specified by the Session Description Protocol (SDP) module, which can lead to a denial of service."}], "lastModified": "2023-05-04T17:15:12.437", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_modem_5300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CE202894-D48A-4B9E-B3BD-28529967A0B3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_modem_5300_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F66A096-7BA3-47D6-98F4-879C3A4C1FFC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_modem_5123:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "72419735-076A-4E72-869F-0C7D801371C1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_modem_5123_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "06B60F97-1320-44F5-970C-BBA29F375524"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0D8701B6-6989-44D1-873A-A1823BFD7CCC"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F18F62E-2012-442E-BE60-6E76325D1824"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE06CD56-8BFD-4208-843A-179E3E6F5C10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43DE4D6F-D662-46F2-93BC-9AE950320BDE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_auto_t5123:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5A1895B4-8B31-492E-B4D8-4DC5130C536A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4F27BAE-A171-42BF-BAC5-90922780525A"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}