Vulnerability Details CVE-2025-54602
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a use-after-free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.6%
CVSS Severity
CVSS v3 Score 7.0
References
Products affected by CVE-2025-54602
-
cpe:2.3:h:samsung:exynos_1080:-
-
cpe:2.3:h:samsung:exynos_1280:-
-
cpe:2.3:h:samsung:exynos_1330:-
-
cpe:2.3:h:samsung:exynos_1380:-
-
cpe:2.3:h:samsung:exynos_1480:-
-
cpe:2.3:h:samsung:exynos_1580:-
-
cpe:2.3:h:samsung:exynos_850:-
-
cpe:2.3:h:samsung:exynos_980:-
-
cpe:2.3:h:samsung:exynos_w1000:-
-
cpe:2.3:h:samsung:exynos_w920:-
-
cpe:2.3:h:samsung:exynos_w930:-
-
cpe:2.3:o:samsung:exynos_1080_firmware:-
-
cpe:2.3:o:samsung:exynos_1280_firmware:-
-
cpe:2.3:o:samsung:exynos_1330_firmware:-
-
cpe:2.3:o:samsung:exynos_1380_firmware:-
-
cpe:2.3:o:samsung:exynos_1480_firmware:-
-
cpe:2.3:o:samsung:exynos_1580_firmware:-
-
cpe:2.3:o:samsung:exynos_850_firmware:-
-
cpe:2.3:o:samsung:exynos_980_firmware:-
-
cpe:2.3:o:samsung:exynos_w1000_firmware:-
-
cpe:2.3:o:samsung:exynos_w920_firmware:-
-
cpe:2.3:o:samsung:exynos_w930_firmware:-