Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-31114

An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause unintended querying of the SIM status via a crafted application.

Published

2023-06-07T21:15:13.350

Last Modified

2025-01-07T15:15:06.800

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.1 (CRITICAL)

Weaknesses

Type: Primary
CWE-669
Type: Secondary
CWE-669

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	samsung	exynos_5123_firmware	-	Yes
Hardware	samsung	exynos_5123	-	No
Operating System	samsung	exynos_5300_firmware	-	Yes
Hardware	samsung	exynos_5300	-	No

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory ([email protected])
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)