The Project Zero team at Google published a new advisory on Thursday, confirming it reported 18 zero-day vulnerabilities in Exynos Modems made by Samsung between late 2022 and early 2023. Written by Project Zero head, Tim Willis, the blog post states that four of the vulnerabilities (CVE-2023-24033 and three others that have yet to be assigned CVE-IDs) enabled potential attackers to perform internet-to-baseband remote code execution (RCE).
Read full article on Infosecurity