Vulnerability Description
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP Min-SE header.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Exynos 5300 Firmware | - |
| Samsung | Exynos 5300 | - |
| Samsung | Exynos 5123 Firmware | - |
| Samsung | Exynos 5123 | - |
| Samsung | Exynos 980 Firmware | - |
| Samsung | Exynos 980 | - |
| Samsung | Exynos 9110 Firmware | - |
| Samsung | Exynos 9110 | - |
| Samsung | Exynos 1080 Firmware | - |
| Samsung | Exynos 1080 | - |
| Samsung | Exynos Auto T5123 Firmware | - |
| Samsung | Exynos Auto T5123 | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/172293/Shannon-Baseband-SIP-Min-SE-Header-S
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
- http://packetstormsecurity.com/files/172293/Shannon-Baseband-SIP-Min-SE-Header-S
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
FAQ
What is CVE-2023-29086?
CVE-2023-29086 is a vulnerability with a CVSS score of 6.8 (MEDIUM). An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory...
How severe is CVE-2023-29086?
CVE-2023-29086 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-29086?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Exynos 5300 Firmware, Samsung Exynos 5300, Samsung Exynos 5123 Firmware, Samsung Exynos 5123, Samsung Exynos 980 Firmware.