1. Home
  2. CVE Database
  3. CVE-2025-53966
HIGH · 8.4

CVE-2025-53966

An issue was discovered in Samsung Mobile Processor Exynos 1380, 1480, 2400, and 1580. Incorrect Handling of the NL80211 vendor command leads to a buffer overflow during handling of an IOCTL message.

Vulnerability Description

An issue was discovered in Samsung Mobile Processor Exynos 1380, 1480, 2400, and 1580. Incorrect Handling of the NL80211 vendor command leads to a buffer overflow during handling of an IOCTL message.

CVSS Score

8.4

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
SamsungExynos 1380 Firmware-
SamsungExynos 1380-
SamsungExynos 1480 Firmware-
SamsungExynos 1480-
SamsungExynos 1580 Firmware-
SamsungExynos 1580-
SamsungExynos 2400 Firmware-
SamsungExynos 2400-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2025-53966?

CVE-2025-53966 is a vulnerability with a CVSS score of 8.4 (HIGH). An issue was discovered in Samsung Mobile Processor Exynos 1380, 1480, 2400, and 1580. Incorrect Handling of the NL80211 vendor command leads to a buffer overflow during handling of an IOCTL message.

How severe is CVE-2025-53966?

CVE-2025-53966 has been rated HIGH with a CVSS base score of 8.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-53966?

Check the references section above for vendor advisories and patch information. Affected products include: Samsung Exynos 1380 Firmware, Samsung Exynos 1380, Samsung Exynos 1480 Firmware, Samsung Exynos 1480, Samsung Exynos 1580 Firmware.