CVE-2025-52517

An issue was discovered in the Camera in Samsung Mobile Processor and Wearable Processor Exynos 1330, 1380, 1480, 2400, 1580, 2500. A race condition in the issimian device driver results in a double free, leading to a denial of service.

CVSS v3 5.9 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://semiconductor.samsung.com/support/quality-support/product-security-updates/	Vendor Advisory
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-52517/	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:samsung:exynos_2500_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_2500:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:samsung:exynos_1330_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_1330:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:samsung:exynos_1380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:samsung:exynos_1480_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_1480:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:samsung:exynos_1580_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_1580:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:samsung:exynos_2400_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:samsung:exynos_2400:-:*:*:*:*:*:*:*

History

09 Jan 2026, 13:31

Type	Values Removed	Values Added
First Time		Samsung exynos 1480 Samsung exynos 1380 Firmware Samsung exynos 1480 Firmware Samsung Samsung exynos 1580 Firmware Samsung exynos 2400 Firmware Samsung exynos 1330 Firmware Samsung exynos 1580 Samsung exynos 2500 Samsung exynos 2500 Firmware Samsung exynos 2400 Samsung exynos 1380 Samsung exynos 1330
References	~~() https://semiconductor.samsung.com/support/quality-support/product-security-updates/ -~~	() https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory
References	~~() https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-52517/ -~~	() https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-52517/ - Vendor Advisory
CPE		cpe:2.3:o:samsung:exynos_1330_firmware:-:::::::* cpe:2.3:h:samsung:exynos_1480:-:::::::* cpe:2.3:o:samsung:exynos_1380_firmware:-:::::::* cpe:2.3:o:samsung:exynos_2400_firmware:-:::::::* cpe:2.3:o:samsung:exynos_2500_firmware:-:::::::* cpe:2.3:h:samsung:exynos_2400:-:::::::* cpe:2.3:o:samsung:exynos_1580_firmware:-:::::::* cpe:2.3:h:samsung:exynos_1580:-:::::::* cpe:2.3:h:samsung:exynos_2500:-:::::::* cpe:2.3:o:samsung:exynos_1480_firmware:-:::::::* cpe:2.3:h:samsung:exynos_1380:-:::::::* cpe:2.3:h:samsung:exynos_1330:-:::::::*
CWE		CWE-362
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.9

05 Jan 2026, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-01-05 19:15

Updated : 2026-01-09 13:31

NVD link : CVE-2025-52517

Mitre link : CVE-2025-52517

CVE.ORG link : CVE-2025-52517

JSON object : View

Products Affected

samsung

exynos_1480
exynos_2400
exynos_1380_firmware
exynos_1330_firmware
exynos_1330
exynos_1480_firmware
exynos_1580
exynos_1580_firmware
exynos_2500
exynos_2500_firmware
exynos_2400_firmware
exynos_1380

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

5.9 /10