Lucene search

CVE-2023-26076

🗓️ 13 Mar 2023 15:12:15Reported by mitreType

An issue discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. Intra-object overflow in the 5G SM message codec due to insufficient parameter validation when decoding reserved options

Reporter	Title	Published	Views	Family All 5
NVD	CVE-2023-26076	13 Mar 202315:15	–	nvd
Prion	Input validation	13 Mar 202315:15	–	prion
Vulnrichment	CVE-2023-26076	13 Mar 202300:00	–	vulnrichment
Cvelist	CVE-2023-26076	13 Mar 202300:00	–	cvelist
GoogleProjectZero	Multiple Internet to Baseband Remote Code Execution Vulnerabilities in Exynos Modems	16 Mar 202300:00	–	googleprojectzero

Nvd

Node

samsung exynos_1280_firmwareMatch-

AND

samsung exynos_1280Match-

Node

samsung exynos_2200_firmwareMatch-

AND

samsung exynos_2200Match-

Node

samsung exynos_modem_5123_firmwareMatch-

AND

samsung exynos_modem_5123Match-

Node

samsung exynos_modem_5300_firmwareMatch-

AND

samsung exynos_modem_5300Match-

Node

samsung exynos_auto_t5123_firmwareMatch-

AND

samsung exynos_auto_t5123Match-

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/171400/Shannon-Baseband-NrSmPcoCodec-Intra-Object-Overflow.html
semiconductor	www.semiconductor.samsung.com/processor/modem/
semiconductor	www.semiconductor.samsung.com/processor/mobile-processor/
googleprojectzero	www.googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html
semiconductor	www.semiconductor.samsung.com/support/quality-support/product-security-updates/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Mar 2023 15:15Current

9.5High risk

Vulners AI Score9.5

CVSS37.6 - 9.8

EPSS0.00344

SSVC

CWE-120