CVE-2023-24033

Vulnerability

The Samsung Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, and Exynos Auto T512 baseband modem chipsets do not properly validate format types specified by the Session Description Protocol (SDP) module. This flaw resides in the SDP parsing logic, which can be triggered when the device receives a crafted SDP message during a session negotiation. The affected chipset versions are those used in various Samsung mobile devices and automotive platforms.

Exploitation

An attacker with network access to a targeted device can send a specially crafted SDP message over a cellular network (e.g., via SMS, IP multimedia subsystem, or other signaling channels) to the vulnerable modem. No prior authentication or user interaction is required. The attacker must simply craft an SDP message that contains an invalid or unexpected format type, which the modem fails to check correctly, leading to a processing error.

Impact

Successful exploitation results in a denial of service (DoS) condition on the baseband modem. This can cause the device to lose cellular connectivity, become unresponsive, or restart repeatedly until the modem is reset. In severe cases, the entire device may crash or require a power cycle to restore functionality. The impact is limited to availability, with no evidence of data compromise or privilege escalation.

Mitigation

As of the publication date (2023-03-13), no official fix or workaround has been disclosed by Samsung. Users should monitor Samsung's product security updates [1] for future patches. Device manufacturers may release firmware updates to address this vulnerability; end users should apply such updates as soon as they become available. No workarounds are currently known.