Buffer Overflow Vulnerability in Samsung Mobile and Processor Products
CVE-2023-41112

7.1HIGH

Key Information:

Vendor: Samsung
Status: Exynos 9810 Firmware
Vendor: CVE Published:; 8 November 2023

What is CVE-2023-41112?

A buffer overflow vulnerability has been identified in multiple Samsung processors, including mobile, wearable, automotive, and modem units. This flaw arises due to the copying of input data without a proper size check, potentially leading to abnormal device behavior and termination. It affects the RLC task and RLC module in these processors, which could impact the functionality of devices using these components.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 8, 2023
Vulnerability Reserved
Aug 23, 2023