PT-2023-27794 · Samsung · Exynos 9810+15
Published
2023-11-08
·
Updated
2024-09-03
·
CVE-2023-41111
CVSS v3.1
7.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem versions Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123
Description
An issue was discovered in the handling of a length parameter inconsistency, which can cause abnormal termination of a mobile phone. This occurs in the RLC task and RLC module.
Recommendations
For Samsung Mobile Processor, Wearable Processor, Automotive Processor, and Modem versions Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Modem 5123, Modem 5300, and Auto T5123, consider restricting access to the RLC module to minimize the risk of exploitation until a patch is available.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Auto T5123
Exynos 1080
Exynos 1280
Exynos 1330
Exynos 1380
Exynos 2100
Exynos 2200
Exynos 850
Exynos 9110
Exynos 9610
Exynos 980
Exynos 9810
Exynos 9820
Modem 5123
Modem 5300
W920