What is the severity of CVE-2024-52924?

The severity of CVE-2024-52924 has not been explicitly rated yet, but it poses a significant risk due to the lack of boundary checks in critical components.

How do I fix CVE-2024-52924?

To fix CVE-2024-52924, you should apply the latest security updates provided by Samsung for the affected Exynos processors and modems.

What devices are affected by CVE-2024-52924?

CVE-2024-52924 affects various Samsung models including the Exynos 9820, 9825, 980, 990, and several modems like Modem 5123, 5300, and 5400.

What type of vulnerability is CVE-2024-52924?

CVE-2024-52924 is a boundary check vulnerability that occurs during the decoding process in certain Samsung mobile and wearable processors.

Can CVE-2024-52924 be exploited remotely?

Yes, CVE-2024-52924 could potentially be exploited remotely if an attacker sends specially crafted data to the affected devices.

Vulnerability/
CVE-2024-52924

high

7.5

CWE

121

6/3/2025

7/3/2025

CVE-2024-52924

First published: Thu Mar 06 2025(Updated: )

An issue was discovered in NRMM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Lack of boundary check during the decoding of Registration Accept messages can lead to out-of-bounds writes on the stack

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Samsung Mobile Processor	=Exynos 9820=Exynos 9825=Exynos 980=Exynos 990=Exynos 850=Exynos 1080=Exynos 2100=Exynos 1280=Exynos 2200=Exynos 1330=Exynos 1380=Exynos 1480=Exynos 2400=Exynos 9110=Exynos W920=Exynos W930=Exynos W1000=Modem 5123=Modem 5300=Modem 5400
Samsung Wearable Processor	=Exynos W920=Exynos W930=Exynos W1000
Samsung Modems	=5123=5300=5400

Never miss a vulnerability like this again

Reference Links

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Frequently Asked Questions

What is the severity of CVE-2024-52924?
The severity of CVE-2024-52924 has not been explicitly rated yet, but it poses a significant risk due to the lack of boundary checks in critical components.
How do I fix CVE-2024-52924?
To fix CVE-2024-52924, you should apply the latest security updates provided by Samsung for the affected Exynos processors and modems.
What devices are affected by CVE-2024-52924?
CVE-2024-52924 affects various Samsung models including the Exynos 9820, 9825, 980, 990, and several modems like Modem 5123, 5300, and 5400.
What type of vulnerability is CVE-2024-52924?
CVE-2024-52924 is a boundary check vulnerability that occurs during the decoding process in certain Samsung mobile and wearable processors.
Can CVE-2024-52924 be exploited remotely?
Yes, CVE-2024-52924 could potentially be exploited remotely if an attacker sends specially crafted data to the affected devices.

agent/references
agent/type
agent/first-publish-date
agent/description
agent/softwarecombine
agent/author
agent/source
collector/nvd-api
source/NVD
agent/last-modified-date
agent/weakness
agent/severity
agent/event
agent/tags
collector/mitre-cve
source/MITRE
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/samsung
canonical/samsung mobile processor
canonical/samsung wearable processor
canonical/samsung modems

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.