← Back

CVE-2025-58343

nvd nist
Published: Feb 3, 2026Modified: Feb 9, 2026

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930 and W1000. There is unbounded memory allocation via a large buffer in a /proc/driver/unifi0/create_tspec write operation, leading to kernel memory exhaustion.

Affected (11)

Samsung
11 products
Exynos 1080 Firmware
Exynos 1280 Firmware
Exynos 1330 Firmware
Exynos 1380 Firmware
Exynos 1480 Firmware
Exynos 1580 Firmware
Exynos 850 Firmware
Exynos 980 Firmware
Exynos W1000 Firmware
Exynos W920 Firmware
Exynos W930 Firmware
Configuration A
11 vulnerable · 11 platform
Vulnerable SoftwareAffected Versions
Exynos 1080 Firmware
All versions
Exynos 1280 Firmware
All versions
Exynos 1330 Firmware
All versions
Exynos 1380 Firmware
All versions
Exynos 1480 Firmware
All versions
Exynos 1580 Firmware
All versions
Exynos 850 Firmware
All versions
Exynos 980 Firmware
All versions
Exynos W1000 Firmware
All versions
Exynos W920 Firmware
All versions
Exynos W930 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 1080
All versions
Samsung
Exynos 1280
All versions
Samsung
Exynos 1330
All versions
Samsung
Exynos 1380
All versions
Samsung
Exynos 1480
All versions
Samsung
Exynos 1580
All versions
Samsung
Exynos 850
All versions
Samsung
Exynos 980
All versions
Samsung
Exynos W1000
All versions
Samsung
Exynos W920
All versions
Samsung
Exynos W930
All versions

Related CWEs

CWE-770
Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory

Timeline

No history available yet.