Skip to content

CVE-2024-29152

The baseband software does not properly check states specified by the RRC Reconfiguration message. This can lead to disclosure of sensitive information.

Jun 03, 2024

This table summarizes key information about the CVE-2024-29152, including its identifier, title, affected products, versions, severity, reporting date, patched versions, and acknowledgement status.
Category Content
CVE ID CVE-2024-29152
Description The baseband software does not properly check states specified by the RRC Reconfiguration message. This can lead to disclosure of sensitive information.
Affected Version Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, Exynos Modem 5300
Severity Medium
Reported Date 2024.02.20
Acknowledgment Kai Tu, Abdullah Al Ishtiaq, Syed MD Mukit Rashid, Yilu Dong, Weixuan Wang, Tianwei Wu, Syed Rafiul Hussain --- SyNSec Lab at Penn State