ГлавнаяУязвимости → CVE-2024-32502
8.4высокая

CVE-2024-32502

Описание

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper reference count checking, which can result in a UAF (Use-After-Free) vulnerability.

Затрагиваемое ПО
Samsung Exynos 1080 firmwareSamsung Exynos 1080Samsung Exynos 1280 firmwareSamsung Exynos 1280Samsung Exynos 1330 firmwareSamsung Exynos 1330Samsung Exynos 1380 firmwareSamsung Exynos 1380Samsung Exynos 2100 firmwareSamsung Exynos 2100Samsung Exynos 850 firmwareSamsung Exynos 850Samsung Exynos w920 firmwareSamsung Exynos w920Samsung Exynos w930 firmwareSamsung Exynos w930
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://semiconductor.samsung.com/support/quality-support/product-security-updates/https://semiconductor.samsung.com/support/quality-support/product-security-updates/