CVE-2023-37377

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 8, 2023

Updated: Sep 13, 2023

CWE ID 125

Summary

CVE-2023-37377 is a vulnerability affecting Samsung Exynos Mobile Processors (Exynos 980, Exynos 850, Exynos 2100) and Wearable Processors (Exynos W920). This issue arises due to a mistake in handling length parameters, resulting in misconfigured packet filtering. An attacker could potentially exploit this flaw to bypass security restrictions and gain unauthorized access to affected systems. The impacted processors power various Samsung devices, increasing the scope of potential vulnerabilities. It is important for device manufacturers and users to apply available patches promptly to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r3fqPx
https://www.cve.org/CVERecord?id=CVE-2023-37377
https://nvd.nist.gov/vuln/detail/CVE-2023-37377

Back to Vulnerability Database

CVE-2023-37377

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations