#VU101072 Out-of-bounds write in Samsung products - CVE-2024-39890


Vulnerability identifier: #VU101072

Vulnerability risk: High

CVSSv4.0: [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2024-39890

CWE-ID: CWE-787

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Exynos 9820
Mobile applications / Mobile firmware & hardware
Exynos 9825
Mobile applications / Mobile firmware & hardware
Exynos 990
Mobile applications / Mobile firmware & hardware
Exynos 980
Hardware solutions / Firmware
Exynos 850
Hardware solutions / Firmware
Exynos 1080
Hardware solutions / Firmware
Exynos 2100
Hardware solutions / Firmware
Exynos 1280
Hardware solutions / Firmware
Exynos 2200
Hardware solutions / Firmware
Exynos 1330
Hardware solutions / Firmware
Exynos 1380
Hardware solutions / Firmware
Exynos 1480
Hardware solutions / Firmware
Exynos 2400
Hardware solutions / Firmware
Exynos 9110
Hardware solutions / Firmware
Exynos W920
Hardware solutions / Firmware
Exynos W930
Hardware solutions / Firmware
Exynos W1000
Hardware solutions / Firmware
Exynos Modem 5123
Hardware solutions / Firmware
Exynos Modem 5300
Hardware solutions / Firmware

Vendor: Samsung

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to a boundary error when processing untrusted input in the baseband software within the CC (Call Control). A remote attacker can trigger an out-of-bounds write and execute arbitrary code on the target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Exynos 9820: All versions

Exynos 9825: All versions

Exynos 980: All versions

Exynos 990: All versions

Exynos 850: All versions

Exynos 1080: All versions

Exynos 2100: All versions

Exynos 1280: All versions

Exynos 2200: All versions

Exynos 1330: All versions

Exynos 1380: All versions

Exynos 1480: All versions

Exynos 2400: All versions

Exynos 9110: All versions

Exynos W920: All versions

Exynos W930: All versions

Exynos W1000: All versions

Exynos Modem 5123: All versions

Exynos Modem 5300: All versions

External links
http://semiconductor.samsung.com/content/semiconductor/global/support/quality-support/product-security-updates/cve-2024-39890/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Samsung products