Resource exhaustion in Samsung Exynos_1280

CVE-2025-26783

An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 2100, 1280, 2200, 1330, 1380, 1480, 2400, W1000, Modem 5300, and Modem 5400. Incorrect handling of undefined values leads to a Denial of Servi…

Vulnerability class: DoS (Denial of Service)

EPSS: 0.004 (27.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2025-26783?
CVE-2025-26783 is a high-severity vulnerability in Samsung Exynos_1280, classified under Uncontrolled Resource Consumption. CVSS score: 7.5/10. Published 2025-05-14.
How severe is CVE-2025-26783?
High severity. CVSS v3 base score is 7.5 out of 10.