Samsung Products Multiple Vulnerabilities

Release Date: 8 May 2025

RISK: High Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.

 

Note:

There are indications that CVE-2025-27363 may be under limited, targeted exploitation. This could lead to local code execution with no additional execution privileges needed.

---

Impact

• Remote Code Execution
• Denial of Service
• Elevation of Privilege
• Information Disclosure

---

System / Technologies affected

• Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400
• Galaxy Watch running Android Watch 14
• Samsung mobile devices running Android 13, 14, 15

For affected products, please refer to the link below:

https://security.samsungmobile.com/securityUpdate.smsb

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

---

Solutions

Before installation of the software, please visit the vendor website for more details.

 

Apply fixes issued by the vendor:

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-55569/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-56427/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-26783/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-26784/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-26785/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-27891/

---

Vulnerability Identifier

• CVE-2023-21342
• CVE-2023-35657
• CVE-2024-33058
• CVE-2024-34739
• CVE-2024-40664
• CVE-2024-43065
• CVE-2024-43066
• CVE-2024-43702
• CVE-2024-43703
• CVE-2024-45549
• CVE-2024-45580
• CVE-2024-46972
• CVE-2024-47894
• CVE-2024-47895
• CVE-2024-47897
• CVE-2024-49739
• CVE-2024-49841
• CVE-2024-49842
• CVE-2024-49845
• CVE-2024-49846
• CVE-2024-49847
• CVE-2024-50264
• CVE-2024-52936
• CVE-2024-52937
• CVE-2024-52938
• CVE-2024-55569
• CVE-2024-56427
• CVE-2024-56556
• CVE-2025-0050
• CVE-2025-0072
• CVE-2025-0077
• CVE-2025-0087
• CVE-2025-20656
• CVE-2025-20657
• CVE-2025-20658
• CVE-2025-20666
• CVE-2025-21430
• CVE-2025-21434
• CVE-2025-21435
• CVE-2025-21436
• CVE-2025-21446
• CVE-2025-21448
• CVE-2025-21453
• CVE-2025-21467
• CVE-2025-21468
• CVE-2025-22425
• CVE-2025-26419
• CVE-2025-26420
• CVE-2025-26421
• CVE-2025-26422
• CVE-2025-26423
• CVE-2025-26424
• CVE-2025-26425
• CVE-2025-26426
• CVE-2025-26427
• CVE-2025-26428
• CVE-2025-26429
• CVE-2025-26430
• CVE-2025-26431
• CVE-2025-26435
• CVE-2025-26436
• CVE-2025-26438
• CVE-2025-26439
• CVE-2025-26440
• CVE-2025-26442
• CVE-2025-26444
• CVE-2025-26783
• CVE-2025-26784
• CVE-2025-26785
• CVE-2025-27363
• CVE-2025-27891

---

Source

• Samsung

---

Related Link

• https://security.samsungmobile.com/securityUpdate.smsb
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-55569/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2024-56427/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-26783/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-26784/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-26785/
• https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-27891/