ГлавнаяУязвимости → CVE-2024-29153
8.1высокая

CVE-2024-29153

Описание

A vulnerability was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, and Exynos Modem 5300 that involves incorrect authorization of LTE NAS messages and leads to downgrading to lower network generations and repeated DDOS.

Затрагиваемое ПО
Samsung Exynos 9820 firmwareSamsung Exynos 9820Samsung Exynos 9825 firmwareSamsung Exynos 9825Samsung Exynos 980 firmwareSamsung Exynos 980Samsung Exynos 990 firmwareSamsung Exynos 990Samsung Exynos 850 firmwareSamsung Exynos 850Samsung Exynos 1080 firmwareSamsung Exynos 1080Samsung Exynos 2100 firmwareSamsung Exynos 2100Samsung Exynos 2200 firmwareSamsung Exynos 2200Samsung Exynos 1280 firmwareSamsung Exynos 1280Samsung Exynos 1380 firmwareSamsung Exynos 1380Samsung Exynos 1330 firmwareSamsung Exynos 1330Samsung Exynos 9110 firmwareSamsung Exynos 9110Samsung Exynos w920 firmware
CVSS
Балл8.1 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://semiconductor.samsung.com/support/quality-support/product-security-updates/https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-29153/https://semiconductor.samsung.com/support/quality-support/product-security-updates/https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-29153/