exploitDog

CVE-2025-54331

Опубликовано: 04 нояб. 2025

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Untrusted Pointer Dereference of src_hdr in the copy_ncp_header function.

Ссылки

https://semiconductor.samsung.com/support/quality-support/product-security-updates/
Vendor Advisory
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54331/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:samsung:exynos_1380_firmware:*:*:*:*:*:*:*:*

Версия до 2025-07 (включая)

cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00064

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-822

Связанные уязвимости

GHSA-88pr-7pr7-5qgq

CVSS3: 5.3

github

3 месяца назад

An issue was discovered in NPU in Samsung Mobile Processor Exynos through July 2025. There is an Untrusted Pointer Dereference of src_hdr in the copy_ncp_header function.

EPSS

Процентиль: 20%

0.00064

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-822