7

CVE-2025-54601

Medienbericht
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a double free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SamsungExynos 980 Firmware Version-
   SamsungExynos 980 Version-
SamsungExynos 850 Firmware Version-
   SamsungExynos 850 Version-
SamsungExynos 1080 Firmware Version-
   SamsungExynos 1080 Version-
SamsungExynos 1280 Firmware Version-
   SamsungExynos 1280 Version-
SamsungExynos 1330 Firmware Version-
   SamsungExynos 1330 Version-
SamsungExynos 1380 Firmware Version-
   SamsungExynos 1380 Version-
SamsungExynos 1480 Firmware Version-
   SamsungExynos 1480 Version-
SamsungExynos 1580 Firmware Version-
   SamsungExynos 1580 Version-
SamsungExynos W930 Firmware Version-
   SamsungExynos W930 Version-
SamsungExynos W920 Firmware Version-
   SamsungExynos W920 Version-
SamsungExynos W1000 Firmware Version-
   SamsungExynos W1000 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.08% 0.004
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7 1 5.9
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
VulnDex Intel
Media Report
08.04.2026 15:05
https://semiconductor.samsung.com/support/quality-support/product-security-updates/
Vendor Advisory
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54601/
Vendor Advisory