CVE-2023-37368: Null Pointer Dereference
First published: Fri Sep 08 2023(Updated: )
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor, and Modem (Exynos Mobile Processor, Automotive Processor, and Modem - Exynos 9810, Exynos 9610, Exynos 9820, Exynos 980, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123). In the Shannon MM Task, Missing validation of a NULL pointer can cause abnormal termination via a malformed NR MM packet.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Exynos 9810 Firmware | ||
| Samsung Exynos 9810 | ||
| Samsung Exynos 9610 Firmware | ||
| Samsung Exynos 9610 | ||
| Samsung Exynos 9820 Firmware | ||
| Samsung Exynos 9820 | ||
| Samsung Exynos 980 Firmware | ||
| Samsung Exynos 980 | ||
| Samsung Exynos 850 Firmware | ||
| Samsung Exynos 850 | ||
| Samsung Exynos 1080 Firmware | ||
| Samsung Exynos 1080 | ||
| Samsung Exynos 2100 Firmware | ||
| Samsung Exynos 2100 | ||
| Samsung Exynos 2200 Firmware | ||
| Samsung Exynos 2200 | ||
| Samsung Exynos 1280 Firmware | ||
| Samsung Exynos 1280 | ||
| Samsung Exynos 1380 Firmware | ||
| Samsung Exynos 1380 | ||
| Samsung Exynos 1330 Firmware | ||
| Samsung Exynos 1330 | ||
| Samsung Exynos 9110 Firmware | ||
| Samsung Exynos 9110 | ||
| Samsung Exynos W920 Firmware | ||
| Samsung Exynos W920 | ||
| Samsung Exynos Modem 5123 Firmware | ||
| Samsung Exynos Modem 5123 | ||
| Samsung Exynos Modem 5300 Firmware | ||
| Samsung Exynos Modem 5300 | ||
| Samsung Exynos Auto T5123 Firmware | ||
| Samsung Exynos Auto T5123 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-37368?
The severity of CVE-2023-37368 is high (CVSS score of 7.5).
Which Samsung processors are affected by CVE-2023-37368?
Samsung Exynos Mobile Processor, Automotive Processor, and Modem are affected by CVE-2023-37368.
What is the vulnerability ID for Samsung Exynos 9810 firmware?
The vulnerability ID for Samsung Exynos 9810 firmware is CVE-2023-37368.
How can I fix the vulnerability in Samsung Exynos processors?
Please refer to the official Samsung website for product security updates and patches.
Is Samsung Exynos 9610 vulnerable to CVE-2023-37368?
No, Samsung Exynos 9610 is not vulnerable to CVE-2023-37368.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/event
- agent/type
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung exynos 9810 firmware
- canonical/samsung exynos 9810
- canonical/samsung exynos 9610 firmware
- canonical/samsung exynos 9610
- canonical/samsung exynos 9820 firmware
- canonical/samsung exynos 9820
- canonical/samsung exynos 980 firmware
- canonical/samsung exynos 980
- canonical/samsung exynos 850 firmware
- canonical/samsung exynos 850
- canonical/samsung exynos 1080 firmware
- canonical/samsung exynos 1080
- canonical/samsung exynos 2100 firmware
- canonical/samsung exynos 2100
- canonical/samsung exynos 2200 firmware
- canonical/samsung exynos 2200
- canonical/samsung exynos 1280 firmware
- canonical/samsung exynos 1280
- canonical/samsung exynos 1380 firmware
- canonical/samsung exynos 1380
- canonical/samsung exynos 1330 firmware
- canonical/samsung exynos 1330
- canonical/samsung exynos 9110 firmware
- canonical/samsung exynos 9110
- canonical/samsung exynos w920 firmware
- canonical/samsung exynos w920
- canonical/samsung exynos modem 5123 firmware
- canonical/samsung exynos modem 5123
- canonical/samsung exynos modem 5300 firmware
- canonical/samsung exynos modem 5300
- canonical/samsung exynos auto t5123 firmware
- canonical/samsung exynos auto t5123