Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Exynos_1280_firmware
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 45 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-06-05 | CVE-2024-27380 | An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_set_delayed_wakeup_type(), there is no input validation check on a length of ioctl_args->args[i] coming from userspace, which can lead to a heap over-read. | Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_850_firmware, Exynos_980_firmware | 6.0 | ||
| 2024-07-09 | CVE-2024-27362 | A vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330, Exynos 1380, and Exynos 2400 where they do not properly check the length of the data, which can lead to a Information disclosure. | Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_2200_firmware, Exynos_2400_firmware | 7.5 | ||
| 2024-06-05 | CVE-2023-50804 | An issue was discovered in Samsung Mobile Processor, and Modem Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the NAS (Non-Access-Stratum) module. This can lead to bypass of authentication. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_2100_firmware, Exynos_2200_firmware, Exynos_850_firmware, Exynos_980_firmware, Exynos_9820_firmware, Exynos_9825_firmware, Exynos_990_firmware, Exynos_modem_5123_firmware, Exynos_modem_5300_firmware | 5.3 | ||
| 2024-06-05 | CVE-2024-27382 | An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame(), there is no input validation check on len coming from userspace, which can lead to a heap over-read. | Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_850_firmware, Exynos_980_firmware | 7.1 | ||
| 2024-09-09 | CVE-2024-27368 | An issue was discovered in Samsung Mobile Processor Exynos Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_received_frame_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_1480_firmware, Exynos_850_firmware, Exynos_980_firmware, Exynos_w920_firmware, Exynos_w930_firmware | 5.5 | ||
| 2024-09-09 | CVE-2024-27383 | An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_get_scan_extra_ies(), there is no input validation check on default_ies coming from userspace, which can lead to a heap overwrite. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_1480_firmware, Exynos_850_firmware, Exynos_980_firmware, Exynos_w920_firmware, Exynos_w930_firmware | 7.8 | ||
| 2024-09-09 | CVE-2024-27387 | An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_rx_range_done_ind(), there is no input validation check on rtt_id coming from userspace, which can lead to a heap overwrite. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_1480_firmware, Exynos_850_firmware, Exynos_980_firmware, Exynos_w920_firmware, Exynos_w930_firmware | 7.8 | ||
| 2024-06-05 | CVE-2024-28818 | An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) module. This can lead to disclosure of sensitive information. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_2100_firmware, Exynos_2200_firmware, Exynos_2400_firmware, Exynos_980_firmware, Exynos_990_firmware, Exynos_modem_5123_firmware, Exynos_modem_5300_firmware | 7.5 | ||
| 2024-09-09 | CVE-2024-27367 | An issue was discovered in Samsung Mobile Processor Exynos Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_scan_ind(), there is no input validation check on a length coming from userspace, which can lead to integer overflow and a potential heap over-read. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_1480_firmware, Exynos_850_firmware, Exynos_980_firmware, Exynos_w920_firmware, Exynos_w930_firmware | 5.5 | ||
| 2024-09-09 | CVE-2024-27365 | An issue was discovered in Samsung Mobile Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_blockack_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read. | Exynos_1080_firmware, Exynos_1280_firmware, Exynos_1330_firmware, Exynos_1380_firmware, Exynos_1480_firmware, Exynos_850_firmware, Exynos_980_firmware, Exynos_w920_firmware, Exynos_w930_firmware | 5.5 |