CVE-2023-21472

EPSS 0.11%
Veröffentlicht 03.09.2025 05:17:04
Zuletzt bearbeitet 05.09.2025 16:46:00
Quelle mobile.security@samsung.com
Teams Watchlist Login
Unerledigt Login

Improper input validation with Exynos Fastboot USB Interface prior to SMR Apr-2023 Release 1 allows a physical attacker to execute arbitrary code in bootloader.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Samsung ≫ Android Version11.0 Update-

Samsung ≫ Android Version11.0 Updatesmr-apr-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-apr-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-aug-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-aug-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-dec-2020-r1

Samsung ≫ Android Version11.0 Updatesmr-dec-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-dec-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-feb-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-feb-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-feb-2023-r1

Samsung ≫ Android Version11.0 Updatesmr-jan-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-jan-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-jan-2023-r1

Samsung ≫ Android Version11.0 Updatesmr-jul-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-jul-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-jun-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-jun-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-mar-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-mar-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-mar-2023-r1

Samsung ≫ Android Version11.0 Updatesmr-may-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-may-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-nov-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-nov-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-oct-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-oct-2022-r1

Samsung ≫ Android Version11.0 Updatesmr-sep-2021-r1

Samsung ≫ Android Version11.0 Updatesmr-sep-2022-r1

Samsung ≫ Android Version12.0 Update-

Samsung ≫ Android Version12.0 Updatesmr-apr-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-aug-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-dec-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-feb-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-feb-2023-r1

Samsung ≫ Android Version12.0 Updatesmr-jan-2023-r1

Samsung ≫ Android Version12.0 Updatesmr-jul-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-jun-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-mar-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-mar-2023-r1

Samsung ≫ Android Version12.0 Updatesmr-may-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-nov-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-oct-2022-r1

Samsung ≫ Android Version12.0 Updatesmr-sep-2022-r1

Samsung ≫ Android Version13.0 Update-

Samsung ≫ Android Version13.0 Updatesmr-apr-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-aug-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-dec-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-feb-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-feb-2023-r1

Samsung ≫ Android Version13.0 Updatesmr-jan-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-jan-2023-r1

Samsung ≫ Android Version13.0 Updatesmr-jul-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-jun-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-mar-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-mar-2023-r1

Samsung ≫ Android Version13.0 Updatesmr-may-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-nov-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-oct-2022-r1

Samsung ≫ Android Version13.0 Updatesmr-sep-2022-r1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.298

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
mobile.security@samsung.com	6.8	0.2	6	CVSS:3.1/AV:P/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=04

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-21472

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-21472

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-21472

EUVD