CVE-2025-43706

HIGH

Samsung Exynos and Modem Firmware - Denial of Service via RRC Packet Handling

Title source: llm

Description

An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2400, 1580, 9110, W920, W930, Modem 5123, and Modem 5400. Incorrect handling of RRC packets leads to a Denial of Service.

References (2)

Core 2

Core References

Vendor Advisory

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Vendor Advisory

https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-43706/

Scores

CVSS v3 7.5

EPSS 0.0028

EPSS Percentile 20.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-400

Status published

Products (11)

samsung/exynos_1080_firmware

samsung/exynos_1580_firmware

samsung/exynos_2400_firmware

samsung/exynos_850_firmware

samsung/exynos_9110_firmware

samsung/exynos_980_firmware

samsung/exynos_990_firmware

samsung/exynos_w920_firmware

samsung/exynos_w930_firmware

samsung/modem_5123_firmware

... and 1 more

Published Jan 05, 2026

Tracked Since Feb 18, 2026