Denial of Service Vulnerability in Samsung Exynos Mobile Processors and Wearables
CVE-2024-52923

7.5HIGH

Key Information:

Vendor: Samsung
Status: Exynos Mobile Processor and Wearable Processor
Vendor: CVE Published:; 6 March 2025

Summary

A vulnerability in the NRMM of Samsung's Exynos mobile processors and wearable devices has been identified, which results from a lack of a boundary check during the decoding of DL NAS Transport messages. This flaw could lead to a Denial of Service condition, affecting the functionality of the devices. Affected models include various Exynos processors ranging from 9820 to 2400 and several models of Samsung's wearable and modem products. Users are encouraged to follow security updates and patches to mitigate potential impacts.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 6, 2025
Vulnerability Reserved
Nov 18, 2024