CVE-2023-37368

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 8, 2023
Updated: Sep 13, 2023
CWE ID 476

Summary

CVE-2023-37368 is a vulnerability affecting various Samsung Exynos processors, including Exynos 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920, Exynos Modem 5123, and 5300, as well as Exynos Auto T5123. In the Shannon MM Task, a NULL pointer validation issue has been found. This flaw can result in abnormal termination upon receipt of a malformed NR MM packet. Successful exploitation of this vulnerability could potentially lead to serious consequences, such as system crashes or unauthorized access. It is important that affected devices receive appropriate patches to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share