How does CVE-2023-40218 affect Samsung Exynos processors?

CVE-2023-40218 can bypass detection of error cases in the NPU kernel driver of Samsung Exynos processors through an integer overflow.

What is the severity level of CVE-2023-40218?

CVE-2023-40218 has a severity level of low (3.3).

How can I fix CVE-2023-40218?

To fix CVE-2023-40218, it is recommended to apply the security updates provided by Samsung.

Where can I find more information about CVE-2023-40218?

You can find more information about CVE-2023-40218 on the Samsung Product Security Updates page.

Vulnerability/
CVE-2023-40218

low

3.3

CWE

190

12/9/2023

14/9/2023

CVE-2023-40218: Integer Overflow

First published: Tue Sep 12 2023(Updated: )

An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Samsung Exynos 9820 Firmware
Samsung Exynos 9820
Samsung Exynos 980 Firmware
Samsung Exynos 980
Samsung Exynos 2100 Firmware
Samsung Exynos 2100
Samsung Exynos 2200 Firmware
Samsung Exynos 2200
Samsung Exynos 1280 Firmware
Samsung Exynos 1280
Samsung Exynos 1380 Firmware
Samsung Exynos 1380

Never miss a vulnerability like this again

Reference Links

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Frequently Asked Questions

What is CVE-2023-40218?
CVE-2023-40218 is an issue in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380.
How does CVE-2023-40218 affect Samsung Exynos processors?
CVE-2023-40218 can bypass detection of error cases in the NPU kernel driver of Samsung Exynos processors through an integer overflow.
What is the severity level of CVE-2023-40218?
CVE-2023-40218 has a severity level of low (3.3).
How can I fix CVE-2023-40218?
To fix CVE-2023-40218, it is recommended to apply the security updates provided by Samsung.
Where can I find more information about CVE-2023-40218?
You can find more information about CVE-2023-40218 on the Samsung Product Security Updates page.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.