CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-31956: An issue was discovered in Samsung Mobile Processor Exynos 2200, Exynos 1480, Exynos 2400. It lacks proper buffer length checking, which can result...

8.4 CVSS

Description

An issue was discovered in Samsung Mobile Processor Exynos 2200, Exynos 1480, Exynos 2400. It lacks proper buffer length checking, which can result in an Out-of-Bounds Write.

Classification

CVE ID: CVE-2024-31956

CVSS Base Severity: HIGH

CVSS Base Score: 8.4

CVSS Vector: CVSS:3.1/AC:L/AV:L/A:H/C:H/I:H/PR:N/S:U/UI:N

Affected Products

Vendor: n/a

Product: n/a

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.05% (probability of being exploited)

EPSS Percentile: 14.16% (scored less or equal to compared to others)

EPSS Date: 2025-04-12 (when was this score calculated)

Stakeholder-Specific Vulnerability Categorization (SSVC)

SSVC Exploitation: none

SSVC Technical Impact: partial

SSVC Automatable: false

References

https://nvd.nist.gov/vuln/detail/CVE-2024-31956
https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Timeline

2025-03-14 17:40:16 UTC
CVE

An issue was discovered in Samsung Mobile Processor Exynos 2200, Exynos 1480, Exynos 2400. It lacks proper buffer length checking, which can result...