CVE-2025-69279
Published: 09 March 2026
Summary
CVE-2025-69279 is a high-severity Improper Input Validation (CWE-20) vulnerability in Google Android. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 46.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SC-5 (Denial-of-service Protection) and SI-10 (Information Input Validation).
Deeper analysis
CVE-2025-69279 is a vulnerability in the NR modem component involving improper input validation (CWE-20), which can cause a system crash. Published on 2026-03-09, it has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) and affects Unisoc NR modems.
A remote attacker can exploit this vulnerability over the network with low attack complexity, requiring no privileges or user interaction. Successful exploitation leads to a denial of service through system crash, with no additional execution privileges needed.
Unisoc has issued an announcement detailing the issue at https://www.unisoc.com/en/support/announcement/2030931350138310657.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-208395
Vulnerability details
In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Improper input validation in network-exposed NR modem component directly enables remote unauthenticated exploitation leading to system crash (Endpoint DoS via application/system exploitation).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly mandates validation of information inputs to prevent system crashes from improper input validation in the NR modem.
Protects against or limits the effects of remote denial-of-service events like the network-triggered system crash.
Requires timely identification, reporting, and correction of the specific flaw causing the NR modem crash.