Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Exynos_firmware
(Samsung)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 4 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-11-09 | CVE-2022-39881 | Improper input validation vulnerability for processing SIB12 PDU in Exynos modems prior to SMR Sep-2022 Release allows remote attacker to read out of bounds memory. | Exynos_firmware | 9.1 | ||
| 2022-12-08 | CVE-2022-39901 | Improper authentication in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to disable the network traffic encryption between UE and gNodeB. | Exynos_firmware | 6.5 | ||
| 2022-12-08 | CVE-2022-39902 | Improper authorization in Exynos baseband prior to SMR DEC-2022 Release 1 allows remote attacker to get sensitive information including IMEI via emergency call. | Exynos_firmware | 7.5 | ||
| 2023-03-16 | CVE-2023-21455 | Improper authorization implementation in Exynos baseband prior to SMR Mar-2023 Release 1 allows incorrect handling of unencrypted message. | Exynos_firmware | 9.1 |