CVE-2024-31955

medium

Description

An issue was discovered in Samsung eMMC with KLMAG2GE4A and KLM8G1WEMB firmware. Code bypass through Electromagnetic Fault Injection allows an attacker to successfully authenticate and write to the RPMB (Replay Protected Memory Block) area without possessing secret information.

References

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Details

Source: Mitre, NVD

Published: 2024-10-15

Updated: 2024-10-30

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:L/AC:H/Au:N/C:N/I:C/A:N

Severity: Medium

CVSS v3

Base Score: 4.9

Vector: CVSS:3.0/AV:P/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N