CVE-2023-49927
First published: Wed Jun 05 2024(Updated: )
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the RRC. This can lead to a lack of encryption.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Samsung Exynos 9820 Firmware | ||
| Samsung Exynos 9820 Firmware | ||
| All of | ||
| Samsung Exynos 9825 firmware | ||
| Samsung Exynos 9825 firmware | ||
| All of | ||
| Samsung Exynos 980 | ||
| Samsung Exynos 980 Firmware | ||
| All of | ||
| Samsung Exynos 990 | ||
| Samsung Exynos 990 (9830) | ||
| All of | ||
| Samsung Exynos 850 Firmware | ||
| Samsung Exynos 850 Firmware | ||
| All of | ||
| Samsung Exynos 1080 Firmware | ||
| Samsung Exynos 1080 Firmware | ||
| All of | ||
| Samsung Exynos 2100 firmware | ||
| Samsung Exynos 2100 firmware | ||
| All of | ||
| Samsung Exynos 2200 firmware | ||
| Samsung Exynos 2200 firmware | ||
| All of | ||
| Samsung Exynos 1280 firmware | ||
| Samsung Exynos 1280 | ||
| All of | ||
| Samsung Exynos 1380 firmware | ||
| Samsung Mobile Processor Exynos 1380 | ||
| All of | ||
| Samsung Exynos 1330 firmware | ||
| Samsung Exynos 1330 firmware | ||
| All of | ||
| Samsung Exynos 5123 firmware | ||
| Samsung Modems | ||
| All of | ||
| Samsung Exynos Modem 5300 firmware | ||
| Samsung Modems |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2023-49927?
CVE-2023-49927 has been assessed with a high severity level due to its potential impact on the baseband software of vulnerable processors.
How does CVE-2023-49927 affect devices?
CVE-2023-49927 can allow attackers to exploit vulnerabilities in the baseband software of affected Samsung Exynos processors, potentially leading to unauthorized access.
Which devices are affected by CVE-2023-49927?
CVE-2023-49927 affects a range of Samsung processors including Exynos 980, 990, 850, 1080, 2100, 2200, 1280, 1380, 1330, as well as Exynos modem 5123 and 5300.
How do I fix CVE-2023-49927?
To fix CVE-2023-49927, users should update their devices to the latest firmware provided by Samsung that addresses this vulnerability.
Is CVE-2023-49927 exploitable remotely?
Yes, CVE-2023-49927 could be exploited remotely if the baseband software vulnerabilities are not mitigated by firmware updates.
- agent/references
- agent/type
- agent/author
- agent/severity
- agent/first-publish-date
- agent/description
- agent/weakness
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/samsung
- canonical/samsung exynos 9820 firmware
- canonical/samsung exynos 9825 firmware
- canonical/samsung exynos 980
- canonical/samsung exynos 980 firmware
- canonical/samsung exynos 990
- canonical/samsung exynos 990 (9830)
- canonical/samsung exynos 850 firmware
- canonical/samsung exynos 1080 firmware
- canonical/samsung exynos 2100 firmware
- canonical/samsung exynos 2200 firmware
- canonical/samsung exynos 1280 firmware
- canonical/samsung exynos 1280
- canonical/samsung exynos 1380 firmware
- canonical/samsung mobile processor exynos 1380
- canonical/samsung exynos 1330 firmware
- canonical/samsung exynos 5123 firmware
- canonical/samsung modems
- canonical/samsung exynos modem 5300 firmware