Denial of Service Vulnerability in Samsung Mobile and Wearable Processors
CVE-2025-66369

7.5HIGH

Key Information:

Vendor

Samsung
Status
Exynos Mobile and Wearable Processors
Vendor
CVE Published:
5 May 2026

What is CVE-2025-66369?

A critical issue has been identified in Samsung's MM that improperly manages 5G NR NAS registration accept messages within various Exynos mobile and wearable processors. This flaw can result in an unexpected Denial of Service, disrupting device functionality and impairing user experience. It affects a range of Exynos processors and modems, and users are advised to monitor Samsung's official communications for updates on security mitigations.

References

https://semiconductor.samsung.com/support/quality-support...
https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.