CVE-2023-21467

Error in 3GPP specification implementation in Exynos baseband prior to SMR Apr-2023 Release 1 allows incorrect handling of unencrypted message.

CVSS v3 4.6 MEDIUM

4.6^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.2 / Impact : 3.4

Attack Vector ADJACENT_NETWORK

Attack Complexity HIGH

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=04

Configurations

No configuration.

History

03 Sep 2025, 16:15

Type	Values Removed	Values Added
CWE		CWE-287

03 Sep 2025, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-09-03 06:15

Updated : 2025-09-04 15:36

NVD link : CVE-2023-21467

Mitre link : CVE-2023-21467

CVE.ORG link : CVE-2023-21467

JSON object : View

Products Affected

No product.

CWE

CWE-287

Improper Authentication

4.6 /10