Karl.Fail

Tag: cwe-125

  • Critical Vulnerability in Samsung Mobile Processor and Modem – CVE-2025-27891

    Overview of CVE-2025-27891

    A critical vulnerability has been discovered in several Samsung Mobile Processors, Wearable Processors, and Modems, including the Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. This issue, tracked as CVE-2025-27891, is caused by the lack of a length check, leading to out-of-bounds reads when malformed NAS packets are received.

    Details of the Vulnerability

    The vulnerability occurs because these processors fail to check the length of incoming NAS (Non-Access Stratum) packets, which are used in mobile communication. If the packets are malformed, it can result in out-of-bounds memory reads, potentially leading to information disclosure or other unintended behavior in the affected devices. This could allow attackers to exploit the vulnerability remotely without requiring user interaction.

    This issue is particularly critical for devices relying on these Samsung processors, including smartphones, wearables, and modem units, as it poses a risk to the confidentiality of the system and can potentially impact system availability.

    CVSS Score and Impact

    The CVSS v3.1 score for CVE-2025-27891 is 9.1, indicating a critical vulnerability. The CVSS vector string for this vulnerability is: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H, which indicates the following:

    • Attack Vector (AV): Network – The vulnerability can be exploited remotely.
    • Attack Complexity (AC): Low – The vulnerability does not require complex conditions to exploit.
    • Privileges Required (PR): None – No special privileges are required to exploit the vulnerability.
    • User Interaction (UI): None – The vulnerability can be exploited without user interaction.
    • Confidentiality Impact (C): High – An attacker could gain access to sensitive data.
    • Integrity Impact (I): None – The integrity of the system data is not affected.
    • Availability Impact (A): High – The vulnerability could cause system instability or downtime.

    Mitigation

    Samsung has acknowledged the issue and is working on providing updates to address the vulnerability. Users of affected devices should monitor the official Samsung Semiconductor security updates page for patches and further guidance. To mitigate the risk, it is recommended that users update their devices as soon as patches are made available.

    For further information, visit Samsung’s official security update pages: Samsung Security Updates and CVE-2025-27891 Details.

    Conclusion

    The CVE-2025-27891 vulnerability highlights the importance of proper validation checks within mobile processors and modems. Samsung users are urged to apply updates promptly to prevent potential exploitation of this critical flaw.

  • CVE-2025-24196: Critical Vulnerability in macOS with User Privileges

    Introduction

    A critical vulnerability, CVE-2025-24196, has been discovered in Apple’s macOS, affecting versions prior to macOS Sequoia 15.4 and macOS Sonoma 14.7.5. This vulnerability allows an attacker with user privileges to read kernel memory, potentially leading to unauthorized access to sensitive system information. This issue has been assigned a CVSS score of 9.8, marking it as a critical security risk. Affected users should immediately update their systems to mitigate this risk.

    Technical Overview

    The vulnerability stems from a type confusion issue, which was addressed by Apple with improved memory handling. When exploited, this flaw allows an attacker with user privileges to read kernel memory, thus gaining unauthorized access to sensitive system resources. This issue impacts multiple macOS versions, and it is critical for users running older versions to update to the latest versions to secure their systems.

    Impact and CVSS Score

    The CVSS score for CVE-2025-24196 is 9.8, reflecting its critical severity. The CVSS vector string for this vulnerability is:

    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    • Exploitability: This vulnerability can be exploited remotely (Network attack vector).
    • Complexity: It has low complexity, making it easier to exploit.
    • User Interaction: No user interaction is required, increasing the risk of exploitation.
    • Impact: The flaw significantly affects confidentiality, integrity, and availability of the system.

    Apple’s Response

    Apple has released updates to address this vulnerability in macOS Ventura 13.7.5, macOS Sequoia 15.4, and macOS Sonoma 14.7.5. These updates introduce improved memory handling to prevent exploitation of this flaw and ensure the security of sensitive user data. It is strongly recommended that all users of affected macOS versions update to the latest releases to secure their devices.

    Conclusion

    Given the severity of CVE-2025-24196, users of the affected macOS versions are strongly advised to update their systems as soon as possible. Regular system updates are crucial for maintaining the security and integrity of your data and protecting your systems from potential exploitation.