Vulnerability Details

ID: CVE-2023-26075

Last Modified: March 17, 2023

Open in new window

Description

An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G MM message codec can occur due to insufficient parameter validation when decoding the Service Area List.

History

Twitter Activity

Tweets last week: 0

Remaining steady

Yahoo Activity

Yahoo results: 0

Remaining steady

EPSS History

Current EPSS Score: 0.00107

Remaining steady

Reddit Activity

Reddit Posts: 1

Remaining steady

Github Repos

Github Repos: 0

Remaining steady

Exploits

Found exploits:

CVSS V3

Attack Vector: Network

Attack Complexity: Low

Privileges Required: None

User Interaction: None

Scope: Unchanged

Confidentiality: High

Integrity: High

Availability: High

Base Score: 9.8

Exploitability Score: 3.9

Impact Score: 5.9

CVSS V3: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Specialize CVSS-Score

CWE-ID

CWE-120

Configuration

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_850_firmware:-:::::::* Part: o Product: exynos_850_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_850:-:::::::* Part: h Product: exynos_850 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_980_firmware:-:::::::* Part: o Product: exynos_980_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_980:-:::::::* Part: h Product: exynos_980 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_1080_firmware:-:::::::* Part: o Product: exynos_1080_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_1080:-:::::::* Part: h Product: exynos_1080 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_1280_firmware:-:::::::* Part: o Product: exynos_1280_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_1280:-:::::::* Part: h Product: exynos_1280 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_2200_firmware:-:::::::* Part: o Product: exynos_2200_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_2200:-:::::::* Part: h Product: exynos_2200 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_modem_5123_firmware:-:::::::* Part: o Product: exynos_modem_5123_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_modem_5123:-:::::::* Part: h Product: exynos_modem_5123 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_modem_5300_firmware:-:::::::* Part: o Product: exynos_modem_5300_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_modem_5300:-:::::::* Part: h Product: exynos_modem_5300 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:::::::* Part: o Product: exynos_auto_t5123_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_auto_t5123:-:::::::* Part: h Product: exynos_auto_t5123 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Condition		Configuration
AND
OR
OR
OR	cpe:2.3:o:samsung:exynos_w920_firmware:-:::::::* Part: o Product: exynos_w920_firmware Vendor: samsung Version: -	Alle Schwachstellen für samsung
OR
OR
OR	cpe:2.3:h:samsung:exynos_w920:-:::::::* Part: h Product: exynos_w920 Vendor: samsung Version: -	Alle Schwachstellen für samsung

Change-History

Date: March 15, 2023

CWE-ID: Not defined
Base Score V3: Not defined
Exploitability Score V3: Not defined
Impact Score V3: Not defined
Cvss Vector V3: Not defined

Date: March 17, 2023

Description: An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, Exynos Auto T5123, and Exynos W920. An intra-object overflow in the 5G MM message codec can occur due to insufficient parameter validation when decoding the Service Area List.
Reference:
added:
https://bugs.chromium.org/p/project-zero/issues/detail?id=2398
https://googleprojectzero.blogspot.com/2023/03/multiple-internet-to-baseband-remote-rce.html

Date: March 17, 2023

Reference:
added:
http://packetstormsecurity.com/files/171387/Shannon-Baseband-NrmmMsgCodec-Intra-Object-Overflow.html

Pre-Condition

                    <?xml version="1.0" ?>
<set operator="and">
    <set operator="or">
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_850_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_850:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_1280_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_1280:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_2200_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_2200:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_modem_5123_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_modem_5123:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_modem_5300_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_modem_5300:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_auto_t5123:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_w920_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_w920:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
    </set>
</set>

Post-Condition

                      <?xml version="1.0" ?>
<set operator="and">
    <set operator="or">
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_850_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_850:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_1280_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_1280:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_2200_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_2200:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_modem_5123_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_modem_5123:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_modem_5300_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_modem_5300:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_auto_t5123:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
        <set operator="and">
            <set operator="or">
                <prop key="operating_system" value="cpe:2.3:o:samsung:exynos_w920_firmware:-:*:*:*:*:*:*:*"/>
            </set>
            <set operator="or">
                <prop key="device" value="cpe:2.3:h:samsung:exynos_w920:-:*:*:*:*:*:*:*"/>
            </set>
        </set>
    </set>
    <prop key="program_influence" value="input"/>
</set>

HPI-VDB — Database for IT-Attack Analysis

ID: CVE-2023-26075

Description

History

Twitter Activity

Yahoo Activity

EPSS History

Reddit Activity

Github Repos

Exploits

CVSS V3

CWE-ID

Configuration

Change-History

Pre-Condition

Post-Condition