{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-54324", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-06T18:48:45.652Z", "dateReserved": "2025-07-20T00:00:00.000Z", "datePublished": "2026-04-06T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-06T18:48:45.652Z"}, "descriptions": [{"lang": "en", "value": "An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Incorrect Handling of a DL NAS Transport packet leads to a Denial of Service."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/"}, {"url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54324/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}}, "dataVersion": "5.2"}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An issue was discovered in NAS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Incorrect Handling of a DL NAS Transport packet leads to a Denial of Service."}], "id": "CVE-2025-54324", "lastModified": "2026-04-06T19:16:26.023", "metrics": {}, "published": "2026-04-06T19:16:26.023", "references": [{"source": "cve@mitre.org", "url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/"}, {"source": "cve@mitre.org", "url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54324/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Received"}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": null}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "exynos", "vendor": "samsung"}], "analysis": {"en": {"generated_at": "2026-04-07T02:23:56.222614+00:00", "value": {"mitigation_remediation": ["Check Samsung Semiconductor\u2019s product security update page for a firmware update addressing this issue.", "If a firmware update is released, apply it immediately to all affected Samsung processors and modems.", "Should no update be available, monitor official Samsung channels for future patches and consider limiting exposure to the affected packet types via network controls if feasible."], "summary": {"action": "Immediate Patch", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "The flaw affects Samsung Mobile Processor, Wearable Processor, and Modem family chips including Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300 and Modem 5400. No specific revision numbers are provided, so all current production devices in these families are potentially vulnerable.", "description_and_impact": "An improper handling of a Downlink NAS Transport packet in Samsung\u2019s mobile processors and modems can cause the device to stop responding. The flaw allows an attacker to send crafted packets that trigger a crash or reset in the packet\u2011processing logic, resulting in loss of network connectivity without affecting data confidentiality or integrity. This is a classic denial\u2011of\u2011service weakness.", "risk_and_exploitability": "The CVSS score is not published, but the lack of a CVSS score combined with an EPSS score of unavailable indicates limited publicly known exploitation data. However, the flaw can be triggered remotely via network traffic, making it potentially usable by adversaries with access to the device\u2019s cellular or data link. Attackers would need to inject malicious NAS Transport packets, a fairly difficult but not impossible task. While the risk level is not defined, the DoS nature of the flaw makes it significant for availability concerns."}}}}, "created": "2026-04-07T07:16:06.628155+00:00", "title": "Denial of Service via Improper Handling of DL NAS Transport Packet in Samsung Exynos and Modem SoCs", "updated": "2026-04-07T09:39:34.843101+00:00", "vendors": ["samsung", "samsung$PRODUCT$exynos"], "weaknesses": ["CWE-400"]}