CVE-2025-54333

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-54333
An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the get_vs4l_profiler_node function.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
https://semiconductor.samsung.com/support/quality-support/product-security-updates/ Vendor Advisory
https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54333/ Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:samsung:exynos_1380_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:*
History

07 Nov 2025, 12:56

Type Values Removed Values Added
CPE cpe:2.3:h:samsung:exynos_1380:-:*:*:*:*:*:*:*
cpe:2.3:o:samsung:exynos_1380_firmware:*:*:*:*:*:*:*:*
First Time Samsung exynos 1380
Samsung
Samsung exynos 1380 Firmware
References () https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - () https://semiconductor.samsung.com/support/quality-support/product-security-updates/ - Vendor Advisory
References () https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54333/ - () https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54333/ - Vendor Advisory

05 Nov 2025, 20:15

Type Values Removed Values Added
Summary (en) An issue was discovered in NPU in Samsung Mobile Processor Exynos through July 2025. There is an Invalid Pointer Dereference of node in the get_vs4l_profiler_node function. (en) An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the get_vs4l_profiler_node function.

04 Nov 2025, 21:15

Type Values Removed Values Added
CWE CWE-763
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 5.3

04 Nov 2025, 18:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-11-04 18:16

Updated : 2025-11-07 12:56

NVD link : CVE-2025-54333

Mitre link : CVE-2025-54333

CVE.ORG link : CVE-2025-54333

JSON object : View

Products Affected

samsung

  • exynos_1380_firmware
  • exynos_1380
CWE
CWE-763

Release of Invalid Pointer or Reference