CVE-2024-31955 MEDIUM

CVE-2024-31955

Vendor N/A
Product n/a
Published October 15, 2024
Last update October 30, 2024

CVSS base score

4.9/10
Attack vector Physical
Attack complexity High
Privileges required None
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AC:H/AV:P/A:N/C:N/I:H/PR:N/S:C/UI:N

What the vulnerability does

01Description

An issue was discovered in Samsung eMMC with KLMAG2GE4A and KLM8G1WEMB firmware. Code bypass through Electromagnetic Fault Injection allows an attacker to successfully authenticate and write to the RPMB (Replay Protected Memory Block) area without possessing secret information.

Key dates

02Disclosure timeline

October 15, 2024 CVE published
October 30, 2024 Record updated