Vulnerability Description
An issue was discovered in the Secure Boot component in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850, 1080, 1280, 2200, 1330, 1380, 1480, 2400. The lack of a length check leads to out-of-bounds writes.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Exynos 9825 Firmware | - |
| Samsung | Exynos 9825 | - |
| Samsung | Exynos 9820 Firmware | - |
| Samsung | Exynos 9820 | - |
| Samsung | Exynos 980 Firmware | - |
| Samsung | Exynos 980 | - |
| Samsung | Exynos 850 Firmware | - |
| Samsung | Exynos 850 | - |
| Samsung | Exynos 2400 Firmware | - |
| Samsung | Exynos 2400 | - |
| Samsung | Exynos 1480 Firmware | - |
| Samsung | Exynos 1480 | - |
| Samsung | Exynos 1380 Firmware | - |
| Samsung | Exynos 1380 | - |
| Samsung | Exynos 1330 Firmware | - |
| Samsung | Exynos 1330 | - |
| Samsung | Exynos 2200 Firmware | - |
| Samsung | Exynos 2200 | - |
| Samsung | Exynos 1280 Firmware | - |
| Samsung | Exynos 1280 | - |
Related Weaknesses (CWE)
References
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
FAQ
What is CVE-2025-27374?
CVE-2025-27374 is a vulnerability with a CVSS score of 5.3 (MEDIUM). An issue was discovered in the Secure Boot component in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850, 1080, 1280, 2200, 1330, 1380, 1480, 2400. The lack of a length...
How severe is CVE-2025-27374?
CVE-2025-27374 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-27374?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Exynos 9825 Firmware, Samsung Exynos 9825, Samsung Exynos 9820 Firmware, Samsung Exynos 9820, Samsung Exynos 980 Firmware.