CVE-2023-37377

An issue was discovered in Samsung Exynos Mobile Processor and Wearable Processor (Exynos 980, Exynos 850, Exynos 2100, and Exynos W920). Improper handling of length parameter inconsistency can cause incorrect packet filtering.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:samsung:exynos_850_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_850:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:samsung:exynos_2100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_2100:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:samsung:exynos_w920_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_w920:-:*:*:*:*:*:*:*

History

13 Sep 2023, 02:34

Type Values Removed Values Added
References (MISC) https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - (MISC) https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory
CPE cpe:2.3:o:samsung:exynos_2100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_w920:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_2100:-:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_850:-:*:*:*:*:*:*:*
cpe:2.3:o:samsung:exynos_w920_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:samsung:exynos_850_firmware:-:*:*:*:*:*:*:*
CWE CWE-125
First Time Samsung exynos 2100
Samsung exynos W920 Firmware
Samsung
Samsung exynos 2100 Firmware
Samsung exynos 980 Firmware
Samsung exynos 850
Samsung exynos W920
Samsung exynos 980
Samsung exynos 850 Firmware
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

08 Sep 2023, 03:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-08 03:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-37377

Mitre link : CVE-2023-37377

CVE.ORG link : CVE-2023-37377


JSON object : View

Products Affected

samsung

  • exynos_w920_firmware
  • exynos_980
  • exynos_2100
  • exynos_w920
  • exynos_850
  • exynos_2100_firmware
  • exynos_850_firmware
  • exynos_980_firmware
CWE
CWE-125

Out-of-bounds Read