Stack-based Buffer Overflow in Samsung Exynos Mobile Processors and Modems
CVE-2025-54328

10CRITICAL

Key Information:

Vendor: Samsung
Status: Exynos Mobile Processors and Modems
Vendor: CVE Published:; 6 April 2026

What is CVE-2025-54328?

A stack-based buffer overflow vulnerability has been identified in the SMS processing of various Samsung Exynos mobile processors and modems. This flaw occurs when the system parses SMS RP-DATA messages, which could potentially allow for remote exploitation. Affected devices span several generations of Exynos processors and modems, raising significant concerns for the security of devices utilizing these components.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 6, 2026
Vulnerability Reserved
Jul 20, 2025

CVE-2025-54328 Data

JSON