Unbounded Memory Allocation Vulnerability in Samsung Exynos Mobile and Wearable Processors
CVE-2025-58343

5.5MEDIUM

Key Information:

Vendor: Samsung
Status: Exynos Mobile and Wearable Processors
Vendor: CVE Published:; 3 February 2026

What is CVE-2025-58343?

A vulnerability has been identified in the Wi-Fi driver of several Samsung Mobile and Wearable Processors, specifically the Exynos series. This issue involves unbounded memory allocation during a write operation to /proc/driver/unifi0/create_tspec, which could lead to kernel memory exhaustion. Affected processor models include Exynos 980, 850, and 2200 among others. Users should be aware of this vulnerability as it poses potential risks to system stability and security.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 3, 2026
Vulnerability Reserved
Aug 29, 2025

CVE-2025-58343 Data

JSON