8.1
CVE-2024-39890
- EPSS 0.25%
- Published 02.12.2024 21:15:10
- Last modified 01.07.2025 15:00:47
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300. The baseband software does not properly check the length specified by the CC (Call Control). This can lead to an Out-of-Bounds write.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Samsung ≫ Exynos Modem 5123 Firmware Version-
Samsung ≫ Exynos Modem 5300 Firmware Version-
Samsung ≫ Exynos 9820 Firmware Version-
Samsung ≫ Exynos 9825 Firmware Version-
Samsung ≫ Exynos 980 Firmware Version-
Samsung ≫ Exynos 990 Firmware Version-
Samsung ≫ Exynos 850 Firmware Version-
Samsung ≫ Exynos 1080 Firmware Version-
Samsung ≫ Exynos 2100 Firmware Version-
Samsung ≫ Exynos 1280 Firmware Version-
Samsung ≫ Exynos 2200 Firmware Version-
Samsung ≫ Exynos 1330 Firmware Version-
Samsung ≫ Exynos 1380 Firmware Version-
Samsung ≫ Exynos 1480 Firmware Version-
Samsung ≫ Exynos 2400 Firmware Version-
Samsung ≫ Exynos 9110 Firmware Version-
Samsung ≫ Exynos W920 Firmware Version-
Samsung ≫ Exynos W930 Firmware Version-
Samsung ≫ Exynos W1000 Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.481 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| cve@mitre.org | 8.1 | 2.2 | 5.9 |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.