CVE-2023-29091

Vulnerability

A stack-based buffer overflow vulnerability exists in the Session Initiation Protocol (SIP) URI decoder of the Samsung Exynos baseband modem firmware. The flaw is due to insufficient parameter validation when decoding SIP URIs, leading to memory corruption. The affected products include Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123 [1][2].

Exploitation

An attacker can exploit this vulnerability from a remote network position by sending a specially crafted SIP URI to the target device, likely over a cellular network (e.g., via a malicious SMS or network packet that triggers SIP message processing). No authentication is required, and user interaction is not needed beyond the device receiving the crafted input [2].

Impact

Successful exploitation results in memory corruption, which could lead to denial of service, information disclosure, or potentially arbitrary code execution with baseband-level privileges, compromising the confidentiality, integrity, and availability of the device's modem subsystem [1][2].

Mitigation

Samsung has released security updates to address this vulnerability as part of its monthly security maintenance release (SMR) process. Affected users should apply the latest firmware updates for their devices from Samsung. No public KEV listing is known at this time [1].