An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application.
References
Link | Resource |
---|---|
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
History
14 Sep 2023, 00:45
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:samsung:exynos_9820:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_2200_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_1280:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_2200:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_2100:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_1280_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_2100_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_1380_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_9820_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:* |
|
First Time |
Samsung exynos 1280
Samsung exynos 2200 Samsung exynos 1380 Samsung exynos 2200 Firmware Samsung exynos 9820 Samsung exynos 9820 Firmware Samsung exynos 1380 Firmware Samsung exynos 1280 Firmware Samsung exynos 980 Samsung exynos 980 Firmware Samsung exynos 2100 Samsung Samsung exynos 2100 Firmware |
|
CWE | CWE-190 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.3 |
References | (MISC) https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory |
12 Sep 2023, 19:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-12 15:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-40218
Mitre link : CVE-2023-40218
CVE.ORG link : CVE-2023-40218
JSON object : View
Products Affected
samsung
- exynos_1380_firmware
- exynos_1280_firmware
- exynos_980
- exynos_980_firmware
- exynos_9820
- exynos_1380
- exynos_1280
- exynos_2100_firmware
- exynos_2100
- exynos_2200_firmware
- exynos_9820_firmware
- exynos_2200
CWE
CWE-190
Integer Overflow or Wraparound