Skip to content

CVE-2026-23792

Incorrect handling of unauthenticated downlink RRC Setup messages can cause the baseband to crash

This table summarizes key information about the CVE-2026-23792, including its identifier, title, affected products, versions, severity, reporting date, patched versions, and acknowledgement status.
Category Content
CVE ID CVE-2026-23792
Description Incorrect handling of unauthenticated downlink RRC Setup messages can cause the baseband to crash
Affected Product Exynos 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W1000, Modem 5300, Modem 5400, Modem 5410
Affected Component NR RRC
Severity Medium
Reported Date 2025-10-22
Acknowledgment Denis Kraemer, University of Applied Sciences Upper Austria, Campus Hagenberg