CVSS Score of 10 (low)


Published Sep 8, 2023
Updated: Sep 13, 2023
CWE ID 476


CVE-2023-37368 is a vulnerability discovered in Samsung Exynos Mobile Processor, Automotive Processor, and Modem. The affected products include Exynos 9810, Exynos 9610, Exynos 9820, Exynos 980, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. This vulnerability is related to the Shannon MM Task and involves missing validation of a NULL pointer. Exploitation of this vulnerability can lead to abnormal termination through a malformed NR MM packet. The risk associated with this vulnerability is rated as medium to high. Remediation measures should be implemented to address this vulnerability in order to prevent potential damage to organizational systems and data.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-37368 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options