CVE-2025-57835
Published: 06 April 2026
Summary
CVE-2025-57835 is a high-severity Improper Input Validation (CWE-20) vulnerability in Samsung Exynos 990 Firmware. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 35.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SC-5 (Denial-of-service Protection).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly addresses CWE-20 improper input validation by requiring validation mechanisms for RRCReconfiguration messages to block malformed inputs causing illegal memory access.
Implements memory protections like ASLR and DEP to mitigate illegal memory access resulting from improper memory initialization in the RRC component.
Provides denial-of-service protections at system entry points to counter remote crashes triggered by specially crafted RRCReconfiguration messages.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Malformed RRCReconfiguration input triggers illegal memory access leading to endpoint system crash (DoS via protocol handler exploitation).
NVD Description
An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. Improper…
more
memory initialization results in an illegal memory access, causing a system crash via a malformed RRCReconfiguration message.
Deeper analysisAI
CVE-2025-57835 is a vulnerability affecting the Radio Resource Control (RRC) component in Samsung Mobile Processors, Wearable Processors, and Modems, including Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. The flaw arises from improper memory initialization, resulting in an illegal memory access and system crash when a malformed RRCReconfiguration message is processed. Published on 2026-04-06, it is associated with CWE-20 (Improper Input Validation) and carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
A remote attacker can exploit this vulnerability over the network with low attack complexity, no required privileges, and no user interaction. By sending a specially crafted RRCReconfiguration message, the attacker can trigger an illegal memory access, leading to a denial-of-service condition through a system crash on affected devices.
Samsung Semiconductor provides details on mitigation through product security updates on their support pages, including https://semiconductor.samsung.com/support/quality-support/product-security-updates/ and the dedicated CVE page at https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-57835/.
Details
- CWE(s)