CNNVD-202511-130 Information
CNNVD ID
CNNVD-202511-130
Related CVE
- CNNVD Published: 2025-11-04
Description (Chinese)
SAMSUNG Exynos 980等都是韩国三星(SAMSUNG)公司的产品。SAMSUNG Exynos 980是一款首个 5G 集成 Soc 产品,也是全球首款 A77 架构处理器。SAMSUNG Exynos 990是一款移动处理器。SAMSUNG Exynos 850是一款移动处理器。 SAMSUNG多款产品存在安全漏洞,该漏洞源于Secure Boot组件缺少长度检查,可能导致越界写入。以下产品受到影响:SAMSUNG Mobile Processor、Wearable Processor Exynos 9820、9825、980、990、850、1080、1280、2200、1330、1380、1480、2400。
Description (English)
SAMSUNG Exynos 980 and so on are the products of the Korea Samsung company. SAMSUNG Exynos 980 is the first 5G integration Soc product and the global first A77 architecture processor. SAMSUNG Exynos 990 is a mobile processor. SAMSUNG Exynos 850 is a mobile processor. There is a safety gap in the multiple SAMSUNG products, which stems from the lack of length checks of the Secure Boot component, which may lead to cross-border writing. The following products were affected: SAMSUNG Mobile Production, Worldable Production Express 9820, 9825, 980, 990, 850, 1080, 1280, 2200, 1330, 1380, 1480, 2400.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
三星
Published
2025-11-04
Last Modified
2026-02-24
References
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-27374/ https://access.redhat.com/security/cve/cve-2025-27374
Patch
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-27374/
Share on: