Lucene search

[email protected]NVD:CVE-2023-36482

HistoryAug 08, 2023 - 8:15 p.m.

CVE-2023-36482

2023-08-0820:15:10

CWE-120

[email protected]

web.nvd.nist.gov

samsung

nfc

buffer copy

input size

vulnerability

nfc service restart

CVSS3

4.3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

4.8

Confidence

High

EPSS

Percentile

12.7%

JSON

An issue was discovered in Samsung NFC S3NRN4V, S3NSN4V, S3NSEN4, SEN82AB, and S3NRN82. A buffer copy without checking its input size can cause an NFC service restart.

Affected configurations

Nvd

Node

samsungs3nrn4vMatch-

AND

samsungs3nrn4v_firmwareMatch-

Node

samsungs3nsn4vMatch-

AND

samsungs3nsn4v_firmwareMatch-

Node

samsungs3nsen4Match-

AND

samsungs3nsen4_firmwareMatch-

Node

samsungsen82abMatch-

AND

samsungsen82ab_firmwareMatch-

Node

samsungs3nrn82Match-

AND

samsungs3nrn82_firmwareMatch-

VendorProductVersionCPE
samsungs3nrn4v-cpe:2.3:h:samsung:s3nrn4v:-:*:*:*:*:*:*:*
samsungs3nrn4v_firmware-cpe:2.3:o:samsung:s3nrn4v_firmware:-:*:*:*:*:*:*:*
samsungs3nsn4v-cpe:2.3:h:samsung:s3nsn4v:-:*:*:*:*:*:*:*
samsungs3nsn4v_firmware-cpe:2.3:o:samsung:s3nsn4v_firmware:-:*:*:*:*:*:*:*
samsungs3nsen4-cpe:2.3:h:samsung:s3nsen4:-:*:*:*:*:*:*:*
samsungs3nsen4_firmware-cpe:2.3:o:samsung:s3nsen4_firmware:-:*:*:*:*:*:*:*
samsungsen82ab-cpe:2.3:h:samsung:sen82ab:-:*:*:*:*:*:*:*
samsungsen82ab_firmware-cpe:2.3:o:samsung:sen82ab_firmware:-:*:*:*:*:*:*:*
samsungs3nrn82-cpe:2.3:h:samsung:s3nrn82:-:*:*:*:*:*:*:*
samsungs3nrn82_firmware-cpe:2.3:o:samsung:s3nrn82_firmware:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
samsung	s3nrn4v	-	cpe:2.3:h:samsung:s3nrn4v:-:::::::*
samsung	s3nrn4v_firmware	-	cpe:2.3:o:samsung:s3nrn4v_firmware:-:::::::*
samsung	s3nsn4v	-	cpe:2.3:h:samsung:s3nsn4v:-:::::::*
samsung	s3nsn4v_firmware	-	cpe:2.3:o:samsung:s3nsn4v_firmware:-:::::::*
samsung	s3nsen4	-	cpe:2.3:h:samsung:s3nsen4:-:::::::*
samsung	s3nsen4_firmware	-	cpe:2.3:o:samsung:s3nsen4_firmware:-:::::::*
samsung	sen82ab	-	cpe:2.3:h:samsung:sen82ab:-:::::::*
samsung	sen82ab_firmware	-	cpe:2.3:o:samsung:sen82ab_firmware:-:::::::*
samsung	s3nrn82	-	cpe:2.3:h:samsung:s3nrn82:-:::::::*
samsung	s3nrn82_firmware	-	cpe:2.3:o:samsung:s3nrn82_firmware:-:::::::*

References

semiconductor.samsung.com/support/quality-support/product-security-updates/

CVSS3

4.3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

4.8

Confidence

High

EPSS

Percentile

12.7%

JSON

Related for NVD:CVE-2023-36482

prion1 cvelist1 cve1