An issue was discovered in Samsung Exynos Mobile Processor and Baseband Modem Processor for Exynos 1280, Exynos 2200, and Exynos Modem 5300. An integer overflow in IPv4 fragment handling can occur due to insufficient parameter validation when reassembling these fragments.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
History
05 May 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Apr 2023, 15:14
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory | |
References | (MISC) https://semiconductor.samsung.com/processor/mobile-processor/ - Product | |
References | (MISC) https://semiconductor.samsung.com/processor/modem/ - Product | |
First Time |
Samsung exynos 2200 Firmware
Samsung exynos 1280 Samsung exynos 2200 Samsung Samsung exynos Modem 5300 Samsung exynos Modem 5300 Firmware Samsung exynos 1280 Firmware |
|
CPE | cpe:2.3:o:samsung:exynos_1280_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_2200_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_modem_5300:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_1280:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_2200:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_modem_5300_firmware:-:*:*:*:*:*:*:* |
|
CWE | CWE-190 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
04 Apr 2023, 17:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-04-04 16:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-28613
Mitre link : CVE-2023-28613
CVE.ORG link : CVE-2023-28613
JSON object : View
Products Affected
samsung
- exynos_1280_firmware
- exynos_modem_5300
- exynos_1280
- exynos_modem_5300_firmware
- exynos_2200_firmware
- exynos_2200
CWE
CWE-190
Integer Overflow or Wraparound