Use After Free Vulnerability in Samsung Exynos 2200 Mobile Processor
CVE-2023-42482

4.7MEDIUM

Key Information:

Vendor: Samsung
Status: Exynos 2200 Firmware
Vendor: CVE Published:; 21 September 2023

What is CVE-2023-42482?

The Samsung Exynos 2200 mobile processor has been identified with a vulnerability that allows for a GPU Use After Free condition. This issue occurs when a program incorrectly deletes an object while still in use, which can lead to potentially exploitable scenarios, including arbitrary code execution. To mitigate risk, it is essential for users to ensure they have the latest updates. Additional information regarding the security advisory can be found on Samsung's official support page.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 21, 2023
Vulnerability Reserved
Sep 11, 2023