CVE-2023-31115
Description
An issue was discovered in the Shannon RCS component in Samsung Exynos Modem 5123 and 5300. Incorrect resource transfer between spheres can cause changes to the activation mode of RCS via a crafted application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Incorrect resource transfer between spheres in the Shannon RCS component of Samsung Exynos Modem 5123 and 5300 allows changing RCS activation mode via a crafted app.
Vulnerability
An issue in the Shannon RCS component of Samsung Exynos Modem 5123 and 5300 involves incorrect resource transfer between spheres. This flaw can be triggered by a crafted application, causing changes to the activation mode of RCS. The vulnerability is present in Exynos Modem 5123 and 5300 [1].
Exploitation
An attacker needs to deliver and execute a crafted application on the device. No additional authentication or network position is specified in the available references, implying that local access to install and run the app is sufficient [1].
Impact
Successful exploitation allows the attacker to change the activation mode of the RCS service, potentially enabling or disabling RCS features without user consent. The scope of impact is limited to the RCS activation state [1].
Mitigation
Samsung Semiconductor provides product security updates; affected users should apply the latest firmware updates for Exynos Modem 5123 and 5300 as detailed in the vendor's security advisory [1]. No additional workarounds are disclosed in the available references [1].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Samsung/Exynos Modemdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.