CVE-2023-28613 MEDIUM

CVE-2023-28613

Vendor N/A
Product n/a
Published April 4, 2023
Last update February 13, 2025

CVSS base score

6.8/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AC:H/AV:N/A:H/C:N/I:N/PR:N/S:C/UI:N

What the vulnerability does

01Description

An issue was discovered in Samsung Exynos Mobile Processor and Baseband Modem Processor for Exynos 1280, Exynos 2200, and Exynos Modem 5300. An integer overflow in IPv4 fragment handling can occur due to insufficient parameter validation when reassembling these fragments.

Key dates

02Disclosure timeline

April 4, 2023 CVE published
February 13, 2025 Record updated