CVE-2023-29087

An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP Retry-After header.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
http://packetstormsecurity.com/files/172295/Shannon-Baseband-SIP-Retry-After-Header-Heap-Buffer-Overflow.html
https://semiconductor.samsung.com/support/quality-support/product-security-updates/	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:samsung:exynos_5300_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_5300:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:samsung:exynos_5123_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_5123:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:samsung:exynos_9110_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_9110:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_auto_t5123:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-04-14 21:15

Updated : 2024-02-28 20:13

NVD link : CVE-2023-29087

Mitre link : CVE-2023-29087

CVE.ORG link : CVE-2023-29087

JSON object : View

Products Affected

samsung

exynos_5123
exynos_5300
exynos_5123_firmware
exynos_980_firmware
exynos_1080
exynos_5300_firmware
exynos_auto_t5123_firmware
exynos_980
exynos_9110_firmware
exynos_auto_t5123
exynos_9110
exynos_1080_firmware

CWE

CWE-787

Out-of-bounds Write

{"id": "CVE-2023-29087", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "cve@mitre.org", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.2}]}, "published": "2023-04-14T21:15:08.293", "references": [{"url": "http://packetstormsecurity.com/files/172295/Shannon-Baseband-SIP-Retry-After-Header-Heap-Buffer-Overflow.html", "source": "cve@mitre.org"}, {"url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP Retry-After header."}], "lastModified": "2023-05-11T18:15:14.300", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_5300_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E2E6EE0-4271-43A3-9439-49F332D1FE1C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_5300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2F9B26D9-AA50-4652-AFC0-A6AC966B4770"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_5123_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFFB4DF2-B55C-45BD-9073-56299E19B6DE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_5123:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A5954D95-E12B-487D-9744-361566788A2D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F18F62E-2012-442E-BE60-6E76325D1824"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0D8701B6-6989-44D1-873A-A1823BFD7CCC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_9110_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1896BFF-D709-481B-AD4F-37D1A8B30C06"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_9110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E6748EF2-3C63-41CD-B3D1-4B3FEC614B40"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43DE4D6F-D662-46F2-93BC-9AE950320BDE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE06CD56-8BFD-4208-843A-179E3E6F5C10"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4F27BAE-A171-42BF-BAC5-90922780525A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:samsung:exynos_auto_t5123:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5A1895B4-8B31-492E-B4D8-4DC5130C536A"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}