Samsung Exynos
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Samsung Exynos.
By the Year
In 2026 there have been 4 vulnerabilities in Samsung Exynos with an average score of 6.4 out of ten. Last year, in 2025 Exynos had 14 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Exynos in 2026 could surpass last years number. Last year, the average CVE base score was greater by 0.43
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 4 | 6.40 |
| 2025 | 14 | 6.83 |
| 2024 | 25 | 6.66 |
| 2023 | 9 | 7.97 |
| 2022 | 1 | 6.50 |
| 2021 | 0 | 0.00 |
| 2020 | 2 | 9.10 |
It may take a day or so for new Exynos vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Samsung Exynos Security Vulnerabilities
Samsung Exynos SoC VS4L VertexIOC Bootup DoS
CVE-2025-62816
5.5 - Medium
- March 03, 2026
An issue was discovered in Samsung Mobile Processor Exynos 1280, 2200, 1380, 1480, 2400, 1580, and 2500. Unvalidated VS4L_VERTEXIOC_BOOTUP input leads to a denial of service.
Improper Input Validation
Samsung Exynos Null Pointer Deref Denial-of-Service in load_fw_utc_vector()
CVE-2025-62814
7.5 - High
- March 03, 2026
An issue was discovered in Samsung Mobile Processor Exynos 1280, 2200, 1380, 1480, and 2400. A NULL pointer dereference of ft_handle in load_fw_utc_vector() causes a denial of service.
NULL Pointer Dereference
Samsung Exynos WiFi Driver: Unbounded Mem Alloc Causing Kernel Exhaustion
CVE-2025-58347
5.5 - Medium
- February 03, 2026
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930 and W1000. There is unbounded memory allocation via a large buffer in a /proc/driver/unifi0/p2p_certif write operation, leading to kernel memory exhaustion.
Allocation of Resources Without Limits or Throttling
Samsung Exynos G3 Camera Driver Improper Validation Info Disclosure & DoS
CVE-2025-52519
7.1 - High
- January 05, 2026
An issue was discovered in the Camera in Samsung Mobile Processor and Wearable Processor Exynos 1330, 1380, 1480, 2400, 1580, and 2500. Improper validation of user-space input in the issimian device driver leads to information disclosure and a denial of service.
Improper Input Validation
Samsung Exynos NPU NULL Pointer Deref in profiler.node
CVE-2025-54332
7.5 - High
- November 04, 2025
An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is a NULL Pointer Dereference of profiler.node in the npu_vertex_profileoff function.
NULL Pointer Dereference
Samsung Exynos Camera Info Leakage via Improper Debug Printing
CVE-2025-54323
7.5 - High
- November 04, 2025
An issue was discovered in the camera in Samsung Mobile Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, and 1580. Improper debug printing leads to information leakage.
Information Disclosure
Samsung Exynos VTS Driver Race Condition OOB Read Info Leak
CVE-2025-54325
5.3 - Medium
- November 04, 2025
An issue was discovered in VTS in Samsung Mobile Processor and Wearable Processor Exynos 1080, 1280, 2200, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000. A race condition in the VTS driver results in an out-of-bounds read, leading to an information leak.
Out-of-bounds Read
HTS Driver Condition Causes OOB Memory Access on Samsung Exynos
CVE-2025-52512
7.5 - High
- November 04, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2400, 1580, 2500. A race condition in the HTS driver results in out-of-bounds memory access, leading to a denial of service.
Out-of-bounds Read
Samsung Exynos MM Packet NULL Check DoS
CVE-2024-55568
7.5 - High
- October 20, 2025
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The absence of a NULL check leads to a Denial of Service when an attacker sends malformed MM packets to the target.
Resource Exhaustion
Improper Access Control in Samsung Exynos Log File
CVE-2025-48025
4.3 - Medium
- October 20, 2025
In Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000, there is an improper access control vulnerability related to a log file.
Authorization
Samsung Exynos L2 RLC AM PDU DoS
CVE-2025-26781
7.5 - High
- October 20, 2025
An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 9110, W920, W930, Modem 5123, and Modem 5300. Incorrect handling of RLC AM PDUs leads to a Denial of Service.
Buffer Overflow
Samsung Exynos L2 DoS via RLC AM PDU Handling
CVE-2025-26782
7.5 - High
- October 20, 2025
An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 9110, W920, W930, Modem 5123, and Modem 5300. Incorrect handling of RLC AM PDUs leads to a Denial of Service.
Resource Exhaustion
Samsung Exynos OOB Write via JPEG Length Check Bypass
CVE-2024-45183
- August 04, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, and 2400. A lack of a JPEG length check leads to an out-of-bound write.
Exynos 1480/2400 OOB Write Vulnerability (CVE-2025-23099)
CVE-2025-23099
- June 02, 2025
An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The lack of a length check leads to out-of-bounds writes.
Samsung Exynos OOB via malformed RRC packets in mobile/wearable SOC
CVE-2024-56427
- May 14, 2025
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds access via malformed RRC packets to the target.
Samsung Exynos OOB Write Vulnerability
CVE-2025-26785
- May 14, 2025
An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The lack of a length check leads to out-of-bounds writes.
Samsung Exynos 2200 DoS in Xclipse Driver
CVE-2024-46923
- February 12, 2025
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. The absence of a null check leads to a Denial of Service at amdgpu_cs_ib_fill in the Xclipse Driver.
Exynos VendorVideoAPI OOB Write Enables Local Privilege Escalation
CVE-2024-53838
- January 03, 2025
In Exynos_parsing_user_data_registered_itu_t_t35 of VendorVideoAPI.cpp, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Samsung Exynos Baseband Software Length Validation Vulnerability
CVE-2024-39343
- December 02, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, Modem 5123, and Modem 5300. The baseband software does not properly check the length specified by the MM (Mobility Management) module, which can lead to Denial of Service.
Exynos Video Codec Integer Overflow Vulnerability
CVE-2018-9352
6.5 - Medium
- November 27, 2024
In ihevcd_allocate_dynamic_bufs of ihevcd_api.c there is a possible resource exhaustion due to integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation.
Integer Overflow or Wraparound
Samsung Exynos GPRS Heap Overflow
CVE-2024-45185
- November 04, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, Modem 5123, Modem 5300. There is an out-of-bounds write due to a heap overflow in the GPRS protocol.
Samsung Exynos CPU Heap BOV Overflow DoS via USAT
CVE-2024-45184
- October 11, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modems with chipset Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, Modem 5123, and Modem 5300. A USAT out-of-bounds write due to a heap buffer overflow can lead to a Denial of Service.
Samsung Exynos M2M Scaler Driver Use-After-Free PrivEsc
CVE-2024-44068
- October 07, 2024
An issue was discovered in the m2m scaler driver in Samsung Mobile Processor and Wearable Processor Exynos 9820, 9825, 980, 990, 850,and W920. A Use-After-Free in the mobile processor leads to privilege escalation.
Samsung Exynos 1480/2400: xclipse amdgpu RC Bug UAF
CVE-2024-31960
7.8 - High
- September 10, 2024
An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. The xclipse amdgpu driver has a reference count bug. This can lead to a use after free.
Dangling pointer
Samsung Exynos Series Heap Over-Read via Unchecked Length in slsi_rx_blockack_ind
CVE-2024-27365
5.5 - Medium
- September 09, 2024
An issue was discovered in Samsung Mobile Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_blockack_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read.
Memory Corruption
Exynos WiFi Driver: heap over-read via slsi_rx_roamed_ind
CVE-2024-27364
5.5 - Medium
- September 09, 2024
An issue was discovered in Mobile Processor, Wearable Processor Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_roamed_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read.
Out-of-bounds Read
Samsung Exynos SoCs Heap Over-Read in slsi_rx_scan_done_ind()
CVE-2024-27366
5.5 - Medium
- September 09, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor Exynos Exynos 980, Exynos 850, Exynos 1080, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 1480, Exynos W920, Exynos W930. In the function slsi_rx_scan_done_ind(), there is no input validation check on a length coming from userspace, which can lead to a potential heap over-read.
Out-of-bounds Read
Samsung Exynos Heap Overwrite via Unchecked tag_len in slsi_handle
CVE-2024-27386
- July 09, 2024
A vulnerability was discovered in the slsi_handle_nan_rx_event_log_ind function in Samsung Mobile Processor Exynos 1380 and Exynos 1480 related to no input validation check on tag_len for tx coming from userspace, which can lead to heap overwrite.
Samsung Exynos TOCTOU Race Can Trigger DoS
CVE-2024-27361
4.1 - Medium
- July 09, 2024
A vulnerability was discovered in Samsung Mobile Processor Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, and Exynos 2400 that involves a time-of-check to time-of-use (TOCTOU) race condition, which can lead to a Denial of Service.
Samsung Exynos SS NULL Pointer Deref Causes DoS via Packet
CVE-2024-28068
- July 09, 2024
A vulnerability was discovered in SS in Samsung Mobile Processor, Wearable Processor, and Modems with versions Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos 9110, Exynos W920, Exynos W930, Exynos Modem 5123, and Exynos Modem 5300 that involves a NULL pointer dereference which can cause abnormal termination of a mobile phone via a manipulated packet.
Samsung Exynos HW OOB Heap Write (No Auth)
CVE-2023-50807
- July 09, 2024
A vulnerability was discovered in Samsung Wearable Processor and Modems with versions Exynos 9110, Exynos Modem 5123, Exynos Modem 5300 that allows an out-of-bounds write in the heap in 2G (no auth).
DoS in Samsung Exynos Processors via Improper Length Check
CVE-2024-27360
7.5 - High
- July 09, 2024
A vulnerability was discovered in Samsung Mobile Processors Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, and Exynos W930 where they do not properly check length of the data, which can lead to a Denial of Service.
Improper Validation of Specified Quantity in Input
Samsung Exynos Out-of-Bounds Write via Length Mischeck
CVE-2024-32504
7.8 - High
- June 13, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper length checking, which can result in an OOB (Out-of-Bounds) Write vulnerability.
Memory Corruption
UAF in Samsung Exynos Mobile/Wearable Processors from ref count bug
CVE-2024-32502
- June 07, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper reference count checking, which can result in a UAF (Use-After-Free) vulnerability.
Samsung Exynos Processors UAF via Improper Memory Dealloc
CVE-2024-32503
7.8 - High
- June 07, 2024
An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper memory deallocation checking, which can result in a UAF (Use-After-Free) vulnerability.
Dangling pointer
Samsung Exynos heap over-read in slsi_send_action_frame
CVE-2024-27382
7.1 - High
- June 05, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame(), there is no input validation check on len coming from userspace, which can lead to a heap over-read.
Out-of-bounds Read
Heap Overwrite via Unsanitized Input in Samsung Exynos CPUs
CVE-2024-27371
7.8 - High
- June 05, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_followup_get_nl_params(), there is no input validation check on hal_req->service_specific_info_len coming from userspace, which can lead to a heap overwrite.
Memory Corruption
Samsung Exynos CPU Heap Overwrite via slsi_nan_config_get_nl_params
CVE-2024-27372
7.8 - High
- June 05, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_config_get_nl_params(), there is no input validation check on disc_attr->infrastructure_ssid_len coming from userspace, which can lead to a heap overwrite.
Memory Corruption
Samsung Exynos heap overwrite via unvalidated hal_req->num_intf_addr_present
CVE-2024-27379
7.8 - High
- June 05, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_subscribe_get_nl_params(), there is no input validation check on hal_req->num_intf_addr_present coming from userspace, which can lead to a heap overwrite.
Memory Corruption
Samsung Exynos Kernel Heap Over-Read via ioctl in slsi_set_delayed_wakeup_type
CVE-2024-27380
6 - Medium
- June 05, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_set_delayed_wakeup_type(), there is no input validation check on a length of ioctl_args->args[i] coming from userspace, which can lead to a heap over-read.
Out-of-bounds Read
Samsung Exynos slsi_send_action_frame_ut() Heap Over-Read via Missing Input Validation
CVE-2024-27381
6 - Medium
- June 05, 2024
An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_send_action_frame_ut(), there is no input validation check on len coming from userspace, which can lead to a heap over-read.
Out-of-bounds Read
Samsung Exynos RRC Baseband Format Check CVE-2023-49927
CVE-2023-49927
5.3 - Medium
- June 05, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 9110, Exynos W920, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check format types specified by the RRC. This can lead to a lack of encryption.
Missing Encryption of Sensitive Data
Samsung Exynos Baseband RRC State Check Failure Sensitive Data Leak
CVE-2024-28818
7.5 - High
- June 05, 2024
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, Exynos 990, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos 2400, Exynos Modem 5123, Exynos Modem 5300. The baseband software does not properly check states specified by the RRC (Radio Resource Control) module. This can lead to disclosure of sensitive information.
TOCTOU Race Cond in Samsung Exynos MM Processors Causing System Crash
CVE-2023-42483
4.7 - Medium
- December 13, 2023
A TOCTOU race condition in Samsung Mobile Processor Exynos 9820, Exynos 980, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, and Exynos 1380 can cause unexpected termination of a system.
TOCTTOU
Samsung Exynos NAS Task Security Check Bypass
CVE-2023-37367
5.3 - Medium
- September 08, 2023
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor, and Modem (Exynos 9820, Exynos 980, Exynos 850, Exynos 1080, Exynos 2100, Exynos 2200, Exynos 1280, Exynos 1380, Exynos 1330, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. In the NAS Task, an improperly implemented security check for standard can disallow desired services for a while via consecutive NAS messages.
AuthZ
Exynos Baseband OOB Heap Write Allows Remote Code Exec
CVE-2023-21517
9.8 - Critical
- June 28, 2023
Heap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code.
Memory Corruption
Samsung Exynos Memory Corruption via SIP Via Header (CVE-2023-29090)
CVE-2023-29090
7.5 - High
- April 14, 2023
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP Via header.
Memory Corruption
Samsung Exynos Modem SIP Session-Expires Header Memory Corruption
CVE-2023-29088
7.5 - High
- April 14, 2023
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP Session-Expires header.
Memory Corruption
Samsung Exynos MEMC: SIP URI decoding fails validation
CVE-2023-29091
7.5 - High
- April 14, 2023
An issue was discovered in Samsung Exynos Mobile Processor, Automotive Processor and Modem for Exynos Modem 5123, Exynos Modem 5300, Exynos 980, Exynos 1080, Exynos 9110, and Exynos Auto T5123. Memory corruption can occur due to insufficient parameter validation while decoding an SIP URI.
Memory Corruption
Samsung Exynos 1280/2200 5G SM Message Codec Intra-Object Overflow
CVE-2023-26076
9.8 - Critical
- March 13, 2023
An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G SM message codec can occur due to insufficient parameter validation when decoding reserved options.
Classic Buffer Overflow
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Samsung Exynos or by Samsung? Click the Watch button to subscribe.
