Vulnerability Description
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300. The baseband software does not properly check the length specified by the CC (Call Control). This can lead to an Out-of-Bounds write.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Exynos Modem 5123 Firmware | - |
| Samsung | Exynos Modem 5123 | - |
| Samsung | Exynos Modem 5300 Firmware | - |
| Samsung | Exynos Modem 5300 | - |
| Samsung | Exynos 9820 Firmware | - |
| Samsung | Exynos 9820 | - |
| Samsung | Exynos 9825 Firmware | - |
| Samsung | Exynos 9825 | - |
| Samsung | Exynos 980 Firmware | - |
| Samsung | Exynos 980 | - |
| Samsung | Exynos 990 Firmware | - |
| Samsung | Exynos 990 | - |
| Samsung | Exynos 850 Firmware | - |
| Samsung | Exynos 850 | - |
| Samsung | Exynos 1080 Firmware | - |
| Samsung | Exynos 1080 | - |
| Samsung | Exynos 2100 Firmware | - |
| Samsung | Exynos 2100 | - |
| Samsung | Exynos 1280 Firmware | - |
| Samsung | Exynos 1280 | - |
Related Weaknesses (CWE)
References
FAQ
What is CVE-2024-39890?
CVE-2024-39890 is a vulnerability with a CVSS score of 8.1 (HIGH). An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123...
How severe is CVE-2024-39890?
CVE-2024-39890 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-39890?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Exynos Modem 5123 Firmware, Samsung Exynos Modem 5123, Samsung Exynos Modem 5300 Firmware, Samsung Exynos Modem 5300, Samsung Exynos 9820 Firmware.