In nr modem, there is a possible system crash due to improper input validation
Description
In nr modem, there is a possible system crash due to improper input validation
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: NR Modem Firmware
PRODUCT: NR Modem
AFFECTED_VERSIONS: See vendor advisory for specific affected versions
---END_METADATA---
Description Summary:
An improper input validation vulnerability in the NR modem firmware can be exploited to induce a system crash and disrupt 5G services through crafted data.
Executive Summary:
The NR modem firmware is vulnerable to a system crash triggered by improper input validation, posing a high risk to 5G network availability.
Vulnerability Details
CVE-ID: CVE-2025-61613
Affected Software: NR Modem Firmware (5G)
Affected Versions: See vendor advisory for specific affected versions
Vulnerability: Similar to other flaws in the NR stack, this vulnerability involves the modem's failure to properly sanitize inputs before processing. An unauthenticated attacker can exploit this via the radio interface to cause the modem software to crash.
Business Impact
Exploitation results in a denial-of-service (DoS) condition, rendering the 5G capabilities of the device unusable until a reboot or service restart occurs. With a CVSS score of 7.5, the vulnerability represents a significant threat to mission-critical 5G communications, potentially leading to operational delays and loss of connectivity.
Remediation Plan
Immediate Action: Apply the latest firmware security updates from the hardware vendor to resolve the input validation error.
Proactive Monitoring: Review device logs for "modem subsystem crash" events and monitor for patterns of connectivity loss across multiple devices.
Compensating Controls: Utilize device management platforms (MDM) to push firmware updates at scale and enforce security policies on cellular-connected hardware.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of March 10, 2026, there is no public information indicating active exploitation of this vulnerability. However, the potential for targeted disruption of 5G-connected devices makes this a high-priority issue for security teams.
Analyst Recommendation
This vulnerability should be treated with high urgency. Administrators must ensure that all devices utilizing the affected NR modem firmware are updated to the latest version. Regular auditing of firmware versions across the organization’s mobile and IoT assets is recommended to identify and remediate such vulnerabilities promptly.