Lucene search

K
cve[email protected]CVE-2023-37377
HistorySep 08, 2023 - 3:15 a.m.

CVE-2023-37377

2023-09-0803:15:08
CWE-125
web.nvd.nist.gov
20
samsung
exynos
mobile processor
wearable processor
cve-2023-37377
security vulnerability

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

15.9%

An issue was discovered in Samsung Exynos Mobile Processor and Wearable Processor (Exynos 980, Exynos 850, Exynos 2100, and Exynos W920). Improper handling of length parameter inconsistency can cause incorrect packet filtering.

Affected configurations

NVD
Node
samsungexynos_980_firmwareMatch-
AND
samsungexynos_980Match-
Node
samsungexynos_850_firmwareMatch-
AND
samsungexynos_850Match-
Node
samsungexynos_2100_firmwareMatch-
AND
samsungexynos_2100Match-
Node
samsungexynos_w920_firmwareMatch-
AND
samsungexynos_w920Match-

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

15.9%

Related for CVE-2023-37377