Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-40218

An issue was discovered in the NPU kernel driver in Samsung Exynos Mobile Processor 9820, 980, 2100, 2200, 1280, and 1380. An integer overflow can bypass detection of error cases via a crafted application.

Published

2023-09-12T15:15:23.767

Last Modified

2024-11-21T08:19:01.470

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 2.0 (LOW)

Weaknesses

Type: Primary
CWE-190

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	samsung	exynos_9820_firmware	-	Yes
Hardware	samsung	exynos_9820	-	No
Operating System	samsung	exynos_980_firmware	-	Yes
Hardware	samsung	exynos_980	-	No
Operating System	samsung	exynos_2100_firmware	-	Yes
Hardware	samsung	exynos_2100	-	No
Operating System	samsung	exynos_2200_firmware	-	Yes
Hardware	samsung	exynos_2200	-	No
Operating System	samsung	exynos_1280_firmware	-	Yes
Hardware	samsung	exynos_1280	-	No
Operating System	samsung	exynos_1380_firmware	-	Yes
Hardware	samsung	exynos_1380	-	No

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory ([email protected])
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)