Lucene search

MitreCVE-2023-42483

HistoryDec 13, 2023 - 1:15 a.m.

CVE-2023-42483

2023-12-1301:15:07

CWE-367

mitre

web.nvd.nist.gov

samsung

exynos

toctou race condition

cve-2023-42483

nvd

CVSS3

6.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

AI Score

4.8

Confidence

High

EPSS

Percentile

9.0%

JSON

A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, and Exynos 1380 can cause unexpected termination of a system.

Affected configurations

Nvd

Node

samsungexynos_9820Match-

AND

samsungexynos_9820_firmwareMatch-

Node

samsungexynos_980Match-

AND

samsungexynos_980_firmwareMatch-

Node

samsungexynos_1080Match-

AND

samsungexynos_1080_firmwareMatch-

Node

samsungexynos_2100Match-

AND

samsungexynos_2100_firmwareMatch-

Node

samsungexynos_2200Match-

AND

samsungexynos_2200_firmwareMatch-

Node

samsungexynos_1280Match-

AND

samsungexynos_1280_firmwareMatch-

Node

samsungexynos_1380Match-

AND

samsungexynos_1380_firmwareMatch-

VendorProductVersionCPE
samsungexynos_9820-cpe:2.3:h:samsung:exynos_9820:-:*:*:*:*:*:*:*
samsungexynos_9820_firmware-cpe:2.3:o:samsung:exynos_9820_firmware:-:*:*:*:*:*:*:*
samsungexynos_980-cpe:2.3:h:samsung:exynos_980:-:*:*:*:*:*:*:*
samsungexynos_980_firmware-cpe:2.3:o:samsung:exynos_980_firmware:-:*:*:*:*:*:*:*
samsungexynos_1080-cpe:2.3:h:samsung:exynos_1080:-:*:*:*:*:*:*:*
samsungexynos_1080_firmware-cpe:2.3:o:samsung:exynos_1080_firmware:-:*:*:*:*:*:*:*
samsungexynos_2100-cpe:2.3:h:samsung:exynos_2100:-:*:*:*:*:*:*:*
samsungexynos_2100_firmware-cpe:2.3:o:samsung:exynos_2100_firmware:-:*:*:*:*:*:*:*
samsungexynos_2200-cpe:2.3:h:samsung:exynos_2200:-:*:*:*:*:*:*:*
samsungexynos_2200_firmware-cpe:2.3:o:samsung:exynos_2200_firmware:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
samsung	exynos_9820	-	cpe:2.3:h:samsung:exynos_9820:-:::::::*
samsung	exynos_9820_firmware	-	cpe:2.3:o:samsung:exynos_9820_firmware:-:::::::*
samsung	exynos_980	-	cpe:2.3:h:samsung:exynos_980:-:::::::*
samsung	exynos_980_firmware	-	cpe:2.3:o:samsung:exynos_980_firmware:-:::::::*
samsung	exynos_1080	-	cpe:2.3:h:samsung:exynos_1080:-:::::::*
samsung	exynos_1080_firmware	-	cpe:2.3:o:samsung:exynos_1080_firmware:-:::::::*
samsung	exynos_2100	-	cpe:2.3:h:samsung:exynos_2100:-:::::::*
samsung	exynos_2100_firmware	-	cpe:2.3:o:samsung:exynos_2100_firmware:-:::::::*
samsung	exynos_2200	-	cpe:2.3:h:samsung:exynos_2200:-:::::::*
samsung	exynos_2200_firmware	-	cpe:2.3:o:samsung:exynos_2200_firmware:-:::::::*

Rows per page:

1-10 of 141

References

semiconductor.samsung.com/support/quality-support/product-security-updates/

CVSS3

6.3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

AI Score

4.8

Confidence

High

EPSS

Percentile

9.0%

JSON

Related for CVE-2023-42483