Lucene search

K
nvd[email protected]NVD:CVE-2023-32846
HistoryDec 04, 2023 - 4:15 a.m.

CVE-2023-32846

2023-12-0404:15:07
CWE-617
web.nvd.nist.gov
5
5g modem
system crash
error handling
remote denial of service
rrc messages
patch id
issue id

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

34.4%

In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving malformed RRC messages, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01128524; Issue ID: MOLY01138453 (MSV-861).

Affected configurations

Nvd
Node
mediateknr15Match-
OR
mediateknr16Match-
OR
mediateknr17Match-
AND
mediatekmt2735Match-
OR
mediatekmt2737Match-
OR
mediatekmt6297Match-
OR
mediatekmt6298Match-
OR
mediatekmt6813Match-
OR
mediatekmt6815Match-
OR
mediatekmt6833Match-
OR
mediatekmt6835Match-
OR
mediatekmt6853Match-
OR
mediatekmt6855Match-
OR
mediatekmt6873Match-
OR
mediatekmt6875Match-
OR
mediatekmt6875tMatch-
OR
mediatekmt6877Match-
OR
mediatekmt6879Match-
OR
mediatekmt6880Match-
OR
mediatekmt6883Match-
OR
mediatekmt6885Match-
OR
mediatekmt6886Match-
OR
mediatekmt6889Match-
OR
mediatekmt6890Match-
OR
mediatekmt6891Match-
OR
mediatekmt6893Match-
OR
mediatekmt6895Match-
OR
mediatekmt6895tMatch-
OR
mediatekmt6896Match-
OR
mediatekmt6897Match-
OR
mediatekmt6980Match-
OR
mediatekmt6980dMatch-
OR
mediatekmt6983Match-
OR
mediatekmt6985Match-
OR
mediatekmt6989Match-
OR
mediatekmt6990Match-
VendorProductVersionCPE
mediateknr15-cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:*
mediateknr16-cpe:2.3:o:mediatek:nr16:-:*:*:*:*:*:*:*
mediateknr17-cpe:2.3:o:mediatek:nr17:-:*:*:*:*:*:*:*
mediatekmt2735-cpe:2.3:h:mediatek:mt2735:-:*:*:*:*:*:*:*
mediatekmt2737-cpe:2.3:h:mediatek:mt2737:-:*:*:*:*:*:*:*
mediatekmt6297-cpe:2.3:h:mediatek:mt6297:-:*:*:*:*:*:*:*
mediatekmt6298-cpe:2.3:h:mediatek:mt6298:-:*:*:*:*:*:*:*
mediatekmt6813-cpe:2.3:h:mediatek:mt6813:-:*:*:*:*:*:*:*
mediatekmt6815-cpe:2.3:h:mediatek:mt6815:-:*:*:*:*:*:*:*
mediatekmt6833-cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 361

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

34.4%

Related for NVD:CVE-2023-32846