Privilege Escalation Vulnerability in Samsung Mobile Processor Series
CVE-2025-23098

7.8HIGH

Key Information:

Vendor: Samsung
Status: Exynos Mobile Processors
Vendor: CVE Published:; 3 June 2025

What is CVE-2025-23098?

A significant vulnerability has been identified in several Samsung Exynos mobile processors, where a use-after-free condition can allow attackers to execute elevated privileges. This flaw may expose devices to unauthorized access and bolster security risks. Users of affected Exynos models should evaluate the potential impacts and consider deploying security updates provided by Samsung to mitigate the risk.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 3, 2025
Vulnerability Reserved
Jan 10, 2025