Vulnerability Description
An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds writes.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Exynos 1280 Firmware | - |
| Samsung | Exynos 1280 | - |
| Samsung | Exynos 2200 Firmware | - |
| Samsung | Exynos 2200 | - |
| Samsung | Exynos 1330 Firmware | - |
| Samsung | Exynos 1330 | - |
| Samsung | Exynos 1380 Firmware | - |
| Samsung | Exynos 1380 | - |
| Samsung | Exynos 1480 Firmware | - |
| Samsung | Exynos 1480 | - |
| Samsung | Exynos 2400 Firmware | - |
| Samsung | Exynos 2400 | - |
| Samsung | Exynos 9110 Firmware | - |
| Samsung | Exynos 9110 | - |
| Samsung | Exynos W920 Firmware | - |
| Samsung | Exynos W920 | - |
| Samsung | Exynos W930 Firmware | - |
| Samsung | Exynos W930 | - |
| Samsung | Exynos W1000 Firmware | - |
| Samsung | Exynos W1000 | - |
Related Weaknesses (CWE)
References
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
FAQ
What is CVE-2025-26785?
CVE-2025-26785 is a vulnerability with a CVSS score of 7.5 (HIGH). An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 530...
How severe is CVE-2025-26785?
CVE-2025-26785 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-26785?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Exynos 1280 Firmware, Samsung Exynos 1280, Samsung Exynos 2200 Firmware, Samsung Exynos 2200, Samsung Exynos 1330 Firmware.