PT-2023-23160 · Samsung · Samsung Exynos Modem
Published
2023-06-07
·
Updated
2025-01-07
·
CVE-2023-31116
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Samsung Exynos Modem versions 5123 through 5300
Description
An issue was discovered in the Shannon RCS component. An incorrect default permission can cause unintended querying of RCS capability via a crafted application.
Recommendations
For Samsung Exynos Modem versions 5123 through 5300, consider restricting access to the Shannon RCS component until a patch is available.
As a temporary workaround, avoid using applications that may exploit the incorrect default permission in the Shannon RCS component.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Samsung Exynos Modem