Skip to content

CVE-2023-26074

A heap-based buffer overflow in the 5G MM message codec can occur due to insufficient parameter validation when decoding operator-defined access category definitions.

Mar 06, 2023

This table summarizes key information about the CVE-2023-26074, including its identifier, title, affected products, versions, severity, reporting date, patched versions, and acknowledgement status.
Category Content
CVE ID CVE-2023-26074
Description A heap-based buffer overflow in the 5G MM message codec can occur due to insufficient parameter validation when decoding operator-defined access category definitions.
Affected Product Samsung Mobile Chipset and Baseband Modem Chipset
Affected Version Exynos 850, Exynos 980, Exynos 1080, Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, Exynos Auto T5123
Severity 7.6 (High)
Reported Date 15-Dec-22
Acknowledgment ※ Not affect all vendor's product, please contact your vendor.