CVE-2025-59439

HIGH

Samsung Exynos 990 Firmware - Denial of Service

Title source: rule

Description

An issue was discovered in Samsung Mobile Processor, Wearable Processor and Modem Exynos 980, 990, 850, 1080, 9110, W920, W930, W1000 and Modem 5123. Incorrect handling of NAS Registration messages leads to a Denial of Service because of Improper Handling of Exceptional Conditions.

References (2)

[Vendor Advisory] https://semiconductor.samsung.com/support/quality-support/product-security-updates/

[Vendor Advisory] https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-59439/

Scores

CVSS v3 7.5

EPSS 0.0002

EPSS Percentile 5.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-400

Status published

Products (9)

samsung/exynos_1080_firmware

samsung/exynos_850_firmware

samsung/exynos_9110_firmware

samsung/exynos_980_firmware

samsung/exynos_990_firmware

samsung/exynos_modem_5123_firmware

samsung/exynos_w1000_firmware

samsung/exynos_w920_firmware

samsung/exynos_w930_firmware

Published Feb 03, 2026

Tracked Since Feb 18, 2026