Samsung Exynos SS NULL Pointer Deref Causes DoS via Packet
CVE-2024-28068 Published on July 9, 2024

A vulnerability was discovered in SS in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, and Exynos Modem 5300 that involves a NULL pointer dereference which can cause abnormal termination of a mobile phone via a manipulated packet.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

HIGH

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. NULL pointer dereference issues can occur through a number of flaws, including race conditions, and simple programming omissions.

Products Associated with CVE-2024-28068

Want to know whenever a new CVE is published for Samsung Exynos? stack.watch will email you.

Samsung Exynos

Exploit Probability

EPSS

0.22%

Percentile

44.55%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Samsung Exynos SS NULL Pointer Deref Causes DoS via PacketCVE-2024-28068 Published on July 9, 2024

Vulnerability Analysis

Weakness Type

NULL Pointer Dereference

Products Associated with CVE-2024-28068

Exploit Probability

Samsung Exynos SS NULL Pointer Deref Causes DoS via Packet
CVE-2024-28068 Published on July 9, 2024