Vulnerability Details CVE-2023-26498
An issue was discovered in Samsung Baseband Modem Chipset for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos Auto T5126. Memory corruption can occur due to improper checking of the number of properties while parsing the chatroom attribute in the SDP (Session Description Protocol) module.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.194
EPSS Ranking 95.1%
CVSS Severity
CVSS v3 Score 8.6
References
- https://semiconductor.samsung.com/processor/mobile-processor/
- https://semiconductor.samsung.com/processor/modem/
- https://semiconductor.samsung.com/support/quality-support/product-security-updates/
- https://semiconductor.samsung.com/processor/mobile-processor/
- https://semiconductor.samsung.com/processor/modem/
- https://semiconductor.samsung.com/support/quality-support/product-security-updates/
Products affected by CVE-2023-26498
-
cpe:2.3:h:samsung:exynos_1080:-
-
cpe:2.3:h:samsung:exynos_980:-
-
cpe:2.3:h:samsung:exynos_auto_t5123:-
-
cpe:2.3:h:samsung:exynos_modem_5123:-
-
cpe:2.3:h:samsung:exynos_modem_5300:-
-
cpe:2.3:o:samsung:exynos_1080_firmware:-
-
cpe:2.3:o:samsung:exynos_980_firmware:-
-
cpe:2.3:o:samsung:exynos_auto_t5123_firmware:-
-
cpe:2.3:o:samsung:exynos_modem_5123_firmware:-
-
cpe:2.3:o:samsung:exynos_modem_5300_firmware:-