Masu bincike daga ƙungiyar Google Project Zero sun ba da rahoton gano lahani 18 a cikin modem na Samsung Exynos 5G/LTE/GSM. Mafi haɗari guda huɗu mafi haɗari (CVE-2023-24033) suna ba da izinin aiwatar da lambar a matakin guntu na baseband ta hanyar magudi daga cibiyoyin sadarwar Intanet na waje. A cewar wakilan Google Project Zero, bayan ɗan ƙarin bincike, ƙwararrun maharan za su iya hanzarta shirya wani amfani mai aiki wanda zai ba da damar samun iko daga nesa a matakin ƙirar mara waya, sanin lambar wayar wanda aka azabtar kawai. Za a iya kai harin ba tare da lura da mai amfani ba kuma baya buƙatar shi ya yi wani aiki.
Sauran lahani guda 14 suna da ƙananan matakan, tun da harin yana buƙatar samun damar yin amfani da abubuwan more rayuwa na afaretan cibiyar sadarwar wayar hannu ko hanyar gida zuwa na'urar mai amfani. Ban da raunin CVE-2023-24033, gyara wanda aka gabatar dashi a cikin sabunta firmware na Maris don na'urorin Google Pixel, batutuwan sun kasance ba a warware su ba. Abinda kawai aka sani game da raunin CVE-2023-24033 shine cewa yana faruwa ne ta hanyar kuskuren duba tsarin sifa "karɓa-nau'i" da aka watsa a cikin saƙonnin SDP (Ka'idar Bayanin Zama).
Har sai masana'antun sun daidaita rashin lahani, ana ba masu amfani shawarar musaki tallafin VoLTE (Voice-over-LTE) da aikin kira ta hanyar Wi-Fi a cikin saitunan. Rashin lahani yana bayyana kansu a cikin na'urorin sanye take da kwakwalwan kwamfuta na Exynos, misali, a cikin wayoyin Samsung (S22, M33, M13, M12, A71, A53, A33, A21, A13, A12 da A04), Vivo (S16, S15, S6, X70). X60 da X30), Google Pixel (6 da 7), da na'urori masu sawa dangane da Exynos W920 chipset da tsarin kera motoci tare da guntuwar Exynos Auto T5123.
Saboda haɗarin rashin lahani da kuma gaskiyar saurin bullowar cin zarafi, Google ya yanke shawarar yin keɓancewa ga matsaloli 4 mafi haɗari kuma ya jinkirta bayyana bayanai game da yanayin matsalolin. Ga sauran raunin, za a bi jadawalin bayyanar da cikakkun bayanai kwanaki 90 bayan an sanar da masana'anta (bayanai game da raunin CVE-2023-26072, CVE-2023-26073, CVE-2023-26074, CVE-2023-26075 da CVE-2023-26076 -9-90 ya riga ya kasance a cikin tsarin bin diddigin kwaro, kuma ga sauran batutuwa 2023, jira na kwanaki 2607 bai ƙare ba tukuna). Rashin raunin da aka ruwaito CVE-XNUMX-XNUMX* ana haifar da shi ta hanyar buffer ambaliya yayin yanke wasu zaɓuɓɓuka da jeri a cikin NrmmMsgCodec da NrSmPcoCodec codecs.
source: budenet.ru