CVE-2024-28067 MEDIUM

CVE-2024-28067

Vendor N/A
Product n/a
Published July 9, 2024
Last update October 30, 2024

CVSS base score

5.3/10
Attack vector Adjacent
Attack complexity High
Privileges required None
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AC:H/AV:A/A:N/C:N/I:H/PR:N/S:U/UI:N

What the vulnerability does

01Description

A vulnerability in Samsung Exynos Modem 5300 allows a Man-in-the-Middle (MITM) attacker to downgrade the security mode of packets going to the victim, enabling the attacker to send messages to the victim in plaintext.

Key dates

02Disclosure timeline

July 9, 2024 CVE published
October 30, 2024 Record updated