An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application.
References
Link | Resource |
---|---|
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ | Vendor Advisory |
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
History
21 Nov 2024, 08:19
Type | Values Removed | Values Added |
---|---|---|
References | () https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 2.0 |
14 Sep 2023, 00:45
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory | |
CPE | cpe:2.3:o:samsung:exynos_2100_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_2200:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_1280_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_9820_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_2100:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_2200_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_9820:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:samsung:exynos_1380_firmware:-:*:*:*:*:*:*:* cpe:2.3:h:samsung:exynos_1280:-:*:*:*:*:*:*:* |
|
CWE | CWE-190 | |
First Time |
Samsung exynos 9820
Samsung exynos 2100 Samsung exynos 1280 Samsung Samsung exynos 1380 Samsung exynos 980 Firmware Samsung exynos 1380 Firmware Samsung exynos 2100 Firmware Samsung exynos 2200 Firmware Samsung exynos 9820 Firmware Samsung exynos 2200 Samsung exynos 980 Samsung exynos 1280 Firmware |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.3 |
12 Sep 2023, 19:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-09-12 15:15
Updated : 2024-11-21 08:19
NVD link : CVE-2023-40218
Mitre link : CVE-2023-40218
CVE.ORG link : CVE-2023-40218
JSON object : View
Products Affected
samsung
- exynos_9820
- exynos_980_firmware
- exynos_2200_firmware
- exynos_2100
- exynos_1380
- exynos_2100_firmware
- exynos_2200
- exynos_980
- exynos_9820_firmware
- exynos_1380_firmware
- exynos_1280
- exynos_1280_firmware
CWE
CWE-190
Integer Overflow or Wraparound