PT-2026-37056 · Samsung · Exynos 850+17
Published
2026-05-05
·
Updated
2026-05-05
·
CVE-2025-66369
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Samsung Mobile Processor Exynos 980
Samsung Mobile Processor Exynos 990
Samsung Mobile Processor Exynos 850
Samsung Mobile Processor Exynos 2100
Samsung Mobile Processor Exynos 1280
Samsung Mobile Processor Exynos 2200
Samsung Mobile Processor Exynos 1330
Samsung Mobile Processor Exynos 1380
Samsung Mobile Processor Exynos 1480
Samsung Mobile Processor Exynos 2400
Samsung Mobile Processor Exynos 1580
Samsung Mobile Processor Exynos 2500
Samsung Wearable Processor W920
Samsung Wearable Processor W930
Samsung Wearable Processor W1000
Samsung Modem 5123
Samsung Modem 5300
Samsung Modem 5400
Description
Incorrect handling of 5G NR NAS registration accept messages in the MM (Mobility Management) component leads to a Denial of Service.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Exynos 1280
Exynos 1330
Exynos 1380
Exynos 1480
Exynos 1580
Exynos 2100
Exynos 2200
Exynos 2400
Exynos 2500
Exynos 850
Exynos 980
Exynos 990
Modem 5123
Modem 5300
Modem 5400
W1000
W920
W930