Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-31957

A vulnerability was discovered in Samsung Mobile Processors Exynos 2200 and Exynos 2400 where they lack a check for the validation of native handles, which can result in a DoS(Denial of Service) attack by unmapping an invalid length.

Published

2024-07-09T18:15:10.013

Last Modified

2025-03-25T17:15:54.363

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.2 (MEDIUM)

Weaknesses

Type: Primary
CWE-1284
Type: Secondary
CWE-1284

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	samsung	exynos_2200_firmware	-	Yes
Hardware	samsung	exynos_2200	-	No
Operating System	samsung	exynos_2400_firmware	-	Yes
Hardware	samsung	exynos_2400	-	No

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory ([email protected])
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31957/ Vendor Advisory ([email protected])
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-31957/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)