CVE-2024-52924

An issue was discovered in NRMM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Lack of boundary check during the decoding of Registration...

CVE-2024-52924

CVE-2024-52924 involves NRMM in Samsung devices: Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820/9825/980/990/850/1080/2100/1280/2200/1330/1380/1480/2400/9110, W920, W930, W1000, Modems 5123/5300/5400. The issue is a lack of boundary checking during the decoding of Registratio...

CVE-2024-50600

CVE-2024-50600 affects Samsung Mobile Processor and Wearable Processor families (Exynos 980/850/1080/1280/1330/1380/1480 and W920/W930/W1000). The root cause is a missing boundary check in STOP_KEEP_ALIVE_OFFLOAD, causing out-of-bounds access when a malformed message is sent via the Wi‑Fi driver....

CVE-2024-52923

CVE-2024-52923 affects Samsung NRMM components on multiple Exynos-powered devices (phones, wearables) and associated Modems. The issue is a lack of boundary checking during the decoding of DL NAS Transport messages, which can lead to a Denial of Service. Connected sources confirm the affected pro...

Samsung多款产品 缓冲区错误漏洞

SAMSUNG Mobile Processor and SAMSUNG Wearable Processor are both products of the South Korean company Samsung.SAMSUNG Mobile Processor is a series of mobile processors.SAMSUNG Wearable Processor is a series of wearable processors. SAMSUNG Mobile Processor is a series of mobile processors. A...

Samsung多款产品 缓冲区错误漏洞

SAMSUNG Mobile Processor and SAMSUNG Wearable Processor are both products of the South Korean company Samsung.SAMSUNG Mobile Processor is a series of mobile processors.SAMSUNG Wearable Processor is a series of wearable processors. SAMSUNG Mobile Processor is a series of mobile processors. A...

Samsung多款产品 安全漏洞

SAMSUNG Mobile Processor and SAMSUNG Wearable Processor are both products of the South Korean company SAMSUNG.SAMSUNG Mobile Processor is a series of mobile processors.SAMSUNG Wearable Processor is a series of wearable processors. SAMSUNG Mobile Processor is a series of mobile processors. A...

CVE-2024-50600

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, W920, W930, and W1000. Lack of a boundary check in STOPKEEPALIVEOFFLOAD leads to out-of-bounds access. An attacker can send a malformed message to the target through the Wi-Fi...

CVE-2024-52923

An issue was discovered in NRMM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Lack of a boundary check during the decoding of DL NAS...

CVE-2024-46922

An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The absence of a null check leads to a Denial of Service at amdgpucsparserbos in the Xclipse Driver...

CVE-2024-46923

An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. The absence of a null check leads to a Denial of Service at amdgpucsibfill in the Xclipse Driver...

CVE-2024-27374

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanpublishgetnlparams, there is no input validation check on halreq-servicespecificinfolen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27370

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanconfiggetnlparams, there is no input validation check on halreq-numconfigdiscoveryattr coming from userspace, which can lead to a heap overwrite...

CVE-2024-27378

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsisendactionframecert, there is no input validation check on len coming from userspace, which can lead to a heap over-read...

CVE-2024-27372

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanconfiggetnlparams, there is no input validation check on discattr-infrastructuressidlen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27381

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsisendactionframeut, there is no input validation check on len coming from userspace, which can lead to a heap over-read...

CVE-2024-27376

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinansubscribegetnlparams, there is no input validation check on halreq-rxmatchfilterlen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27382

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsisendactionframe, there is no input validation check on len coming from userspace, which can lead to a heap over-read...

CVE-2024-27373

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanconfiggetnlparams, there is no input validation check on discattr-meshidlen coming from userspace, which can lead to a heap overwrite...

CVE-2024-27377

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinangetsecurityinfonl, there is no input validation check on secinfo-keyinfo.body.pmkinfo.pmklen coming from userspace, which can lead to a heap overwrite...