Vulnerability Details CVE-2025-27891
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds reads via malformed NAS packets.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.6%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2025-27891
-
cpe:2.3:h:samsung:exynos_1080:-
-
cpe:2.3:h:samsung:exynos_1280:-
-
cpe:2.3:h:samsung:exynos_1330:-
-
cpe:2.3:h:samsung:exynos_1380:-
-
cpe:2.3:h:samsung:exynos_1480:-
-
cpe:2.3:h:samsung:exynos_2100:-
-
cpe:2.3:h:samsung:exynos_2200:-
-
cpe:2.3:h:samsung:exynos_2400:-
-
cpe:2.3:h:samsung:exynos_850:-
-
cpe:2.3:h:samsung:exynos_980:-
-
cpe:2.3:h:samsung:exynos_990:-
-
cpe:2.3:h:samsung:exynos_modem_5123:-
-
cpe:2.3:h:samsung:exynos_modem_5300:-
-
cpe:2.3:h:samsung:exynos_modem_5400:-
-
cpe:2.3:h:samsung:exynos_w1000:-
-
cpe:2.3:h:samsung:exynos_w920:-
-
cpe:2.3:h:samsung:exynos_w930:-
-
cpe:2.3:o:samsung:exynos_1080_firmware:-
-
cpe:2.3:o:samsung:exynos_1280_firmware:-
-
cpe:2.3:o:samsung:exynos_1330_firmware:-
-
cpe:2.3:o:samsung:exynos_1380_firmware:-
-
cpe:2.3:o:samsung:exynos_1480_firmware:-
-
cpe:2.3:o:samsung:exynos_2100_firmware:-
-
cpe:2.3:o:samsung:exynos_2200_firmware:-
-
cpe:2.3:o:samsung:exynos_2400_firmware:-
-
cpe:2.3:o:samsung:exynos_850_firmware:-
-
cpe:2.3:o:samsung:exynos_980_firmware:-
-
cpe:2.3:o:samsung:exynos_990_firmware:-
-
cpe:2.3:o:samsung:exynos_modem_5123_firmware:-
-
cpe:2.3:o:samsung:exynos_modem_5300_firmware:-
-
cpe:2.3:o:samsung:exynos_modem_5400_firmware:-
-
cpe:2.3:o:samsung:exynos_w1000_firmware:-
-
cpe:2.3:o:samsung:exynos_w920_firmware:-
-
cpe:2.3:o:samsung:exynos_w930_firmware:-