Buffer Overflow Vulnerability in Samsung Mobile Processor WiFi Driver
CVE-2025-49495

8.4HIGH

Key Information:

Vendor: Samsung
Status: Exynos Mobile Processor
Vendor: CVE Published:; 5 January 2026

What is CVE-2025-49495?

A vulnerability has been identified in the WiFi driver of Samsung's Exynos mobile processors, including models 1380, 1480, 2400, and 1580. This flaw arises from incorrect handling of an NL80211 vendor command, which can result in a buffer overflow. Such an overflow can potentially lead to unauthorized access or execution of arbitrary code, posing significant security risks to devices utilizing these processors.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 5, 2026
Vulnerability Reserved
Jun 6, 2025

JSON