CVE-2025-52516

MEDIUM

Samsung Exynos 1330 1380 1480 1580 2400 2500 Firmware - Denial of Service via Invalid Kernel Address Dereference

Title source: llm

Description

An issue was discovered in the Camera in Samsung Mobile Processor and Wearable Processor Exynos 1330, 1380, 1480, 2400, 1580, 2500. An invalid kernel address dereference in the issimian device driver leads to a denial of service.

References (2)

Core 2

Core References

Vendor Advisory

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Vendor Advisory

https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-52516/

Scores

CVSS v3 6.2

EPSS 0.0011

EPSS Percentile 1.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-822

Status published

Products (6)

samsung/exynos_1330_firmware

samsung/exynos_1380_firmware

samsung/exynos_1480_firmware

samsung/exynos_1580_firmware

samsung/exynos_2400_firmware

samsung/exynos_2500_firmware

Published Jan 05, 2026

Tracked Since Feb 18, 2026