← back
CVE-2023-28613

CVE-2023-28613

CVSS 6.8 MEDIUMEPSS 1.2%CWE-190
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.8EPSS 1.2%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
04 Apr 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
An issue was discovered in Samsung Exynos Mobile Processor and Baseband Modem Processor for Exynos 1280, Exynos 2200, and Exynos Modem 5300. An integer overflow in IPv4 fragment handling can occur due to insufficient parameter validation when reassembling these fragments.
CVSS:3.1/AC:H/AV:N/A:H/C:N/I:N/PR:N/S:C/UI:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/172177/Shannon-Baseband-Integer-Overflow.htmlhttps://semiconductor.samsung.com/processor/mobile-processor/https://semiconductor.samsung.com/processor/modem/https://semiconductor.samsung.com/support/quality-support/product-security-updates/