CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
30.0%
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, and Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) Reconfiguration message. This can lead to disclosure of sensitive information.
Vendor | Product | Version | CPE |
---|---|---|---|
samsung | exynos_980_firmware | - | cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:* |
samsung | exynos_980 | - | cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:* |
samsung | exynos_990_firmware | - | cpe:2.3:o:samsung:exynos_990_firmware:-:*:*:*:*:*:*:* |
samsung | exynos_990 | - | cpe:2.3:h:samsung:exynos_990:-:*:*:*:*:*:*:* |
samsung | exynos_850_firmware | - | cpe:2.3:o:samsung:exynos_850_firmware:-:*:*:*:*:*:*:* |
samsung | exynos_850 | - | cpe:2.3:h:samsung:exynos_850:-:*:*:*:*:*:*:* |
samsung | exynos_1080_firmware | - | cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:* |
samsung | exynos_1080 | - | cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:* |
samsung | exynos_2100_firmware | - | cpe:2.3:o:samsung:exynos_2100_firmware:-:*:*:*:*:*:*:* |
samsung | exynos_2100 | - | cpe:2.3:h:samsung:exynos_2100:-:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
30.0%