Description
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The function used to decode the SOR transparent container lacks bounds checking, which can cause a fatal error.
CVSS Metrics
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
- Attack Vector
- network
- Complexity
- low
- Privileges
- none
- User Action
- none
- Scope
- unchanged
- Confidentiality
- none
- Integrity
- none
- Availability
- low
- Weaknesses
- CWE-119
Metadata
- Primary Vendor
- SAMSUNG
- Published
- 12/3/2025
- Last Modified
- 12/5/2025
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
samsung : exynos_1280_firmwaresamsung : exynos_1330_firmwaresamsung : exynos_1380_firmwaresamsung : exynos_1480_firmwaresamsung : exynos_1580_firmwaresamsung : exynos_2100_firmwaresamsung : exynos_2200_firmwaresamsung : exynos_2400_firmwaresamsung : exynos_2500_firmwaresamsung : exynos_850_firmwaresamsung : exynos_980_firmwaresamsung : exynos_990_firmwaresamsung : exynos_w1000_firmwaresamsung : exynos_w930_firmwaresamsung : exynos_w920_firmwaresamsung : modem_5123_firmwaresamsung : modem_5300_firmwaresamsung : modem_5400_firmware
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.