Samsung Mobile Devices Use-After-Free Vulnerability - 20230919002

Overview

The WA SOC has observed a security flaw with an improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022 Release 1. This could allow attackers the ability to execute arbitrary memory write and code execution on the target system, without the knowlegde of the owner.

What is the vulnerability?

CVE-2022-22265 - CVSS v3 Base Score: 7.8

What is vulnerable?

The vulnerability affects the Samsung Mobile Devices with selected Exynos chipsets;

• versions P(9.0), Q(10.0), R(11.0), S(12.0)

What has been observed?

CISA added this vulnerabilty in their Known Exploited Vulnerabilties catalog on 18 September 2023. There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of one month (refer Patch Management):

• Samsung mobile security
• Common weakness enumeration