Description
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds writes via malformed NAS packets.
CVSS Metrics
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
- Attack Vector
- network
- Complexity
- low
- Privileges
- none
- User Action
- none
- Scope
- unchanged
- Confidentiality
- high
- Integrity
- none
- Availability
- high
- Weaknesses
- CWE-787
Metadata
- Primary Vendor
- SAMSUNG
- Published
- 1/5/2026
- Last Modified
- 1/9/2026
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
samsung : exynos_990_firmwaresamsung : exynos_980_firmwaresamsung : exynos_850_firmwaresamsung : exynos_1080_firmwaresamsung : exynos_2100_firmwaresamsung : exynos_1280_firmwaresamsung : exynos_2200_firmwaresamsung : exynos_1330_firmwaresamsung : exynos_1380_firmwaresamsung : exynos_1480_firmwaresamsung : exynos_1580_firmwaresamsung : exynos_2400_firmwaresamsung : exynos_9110_firmwaresamsung : exynos_w930_firmwaresamsung : exynos_w920_firmwaresamsung : exynos_w1000_firmwaresamsung : modem_5123_firmwaresamsung : modem_5300_firmwaresamsung : modem_5400_firmware
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.