Denial of Service Vulnerability in Samsung Mobile and Wearable Processors
CVE-2025-26783

7.5HIGH

Key Information:

Vendor: Samsung
Status: Exynos Processors
Vendor: CVE Published:; 14 May 2025

What is CVE-2025-26783?

A security vulnerability has been found in the RRC (Radio Resource Control) layer of Samsung's Mobile and Wearable Processors. This issue arises from improper handling of undefined values, which could lead to a potential Denial of Service scenario, affecting device performance and availability. The specific processors impacted include Exynos series—models 2100, 1280, 2200, 1330, 1380, 1480, 2400—and W1000, as well as Modem 5300 and 5400. Users and manufacturers are advised to review their systems and apply necessary updates to mitigate risks.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2025
Vulnerability Reserved
Feb 14, 2025