VYPR
← All advisories
Unrated severityNVD Advisory· Published Apr 14, 2023· Updated Feb 7, 2025

CVE-2023-29089

CVE-2023-29089

Description

An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding SIP multipart messages.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Memory corruption in Samsung Exynos baseband due to insufficient validation of SIP multipart messages, leading to potential remote code execution.

Vulnerability

A memory corruption vulnerability exists in the Shannon baseband firmware of Samsung Exynos processors when decoding SIP multipart messages. The issue stems from insufficient parameter validation, allowing a negative size value to be passed to a memcpy operation. Affected products include Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123 [1].

Exploitation

An unauthenticated attacker can send a specially crafted SIP multipart message over the air to the target device's baseband. The malformed message triggers a negative-size memcpy, leading to an out-of-bounds read or write condition [2]. No user interaction is required.

Impact

Successful exploitation could allow an attacker to achieve remote code execution or cause a denial of service at the baseband level. This could compromise the device's cellular communication and potentially provide a foothold for further attacks on the application processor.

Mitigation

Samsung has addressed this vulnerability in a security update. Users should apply the latest firmware updates provided by Samsung for their devices [1]. No workaround is available; updating to the patched version is the only mitigation.

References
  1. Product Security Update | Support | Samsung Semiconductor Global
  2. Packet Storm

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4

Patches

0

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

2

News mentions

0

No linked articles in our index yet.