PT-2025-15614 · Samsung · Exynos 1080 Firmware+17
Published
2025-04-08
·
Updated
2025-06-25
·
CVE-2025-22377
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Samsung Mobile Processor, Wearable Processor, and Modem Exynos versions 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400
Description
A Heap-based Out-of-Bounds Write issue exists in the GPRS protocol implementation due to a mismatch between the actual length of the payload and the length declared within the payload. This issue affects several Samsung Exynos processors and modems.
Recommendations
For Samsung Mobile Processor, Wearable Processor, and Modem Exynos versions 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400, update to a version that includes the April 2025 security update.
As a temporary workaround, consider restricting access to the GPRS protocol implementation until a patch is available.
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Exynos 1080 Firmware
Exynos 1280 Firmware
Exynos 1330 Firmware
Exynos 1380 Firmware
Exynos 1480 Firmware
Exynos 2100 Firmware
Exynos 2200 Firmware
Exynos 2400 Firmware
Exynos 850 Firmware
Exynos 9110 Firmware
Exynos 980 Firmware
Exynos 990 Firmware
Exynos Modem 5123 Firmware
Exynos Modem 5300 Firmware
Exynos Modem 5400 Firmware
Exynos W1000 Firmware
Exynos W920 Firmware
Exynos W930 Firmware