Vulnerability Description
An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the get_vs4l_profiler_node function.
CVSS Score
5.3
MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Samsung | Exynos 1380 Firmware | <= 2025-07 |
| Samsung | Exynos 1380 | - |
Related Weaknesses (CWE)
References
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
- https://semiconductor.samsung.com/support/quality-support/product-security-updatVendor Advisory
FAQ
What is CVE-2025-54333?
CVE-2025-54333 is a vulnerability with a CVSS score of 5.3 (MEDIUM). An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Invalid Pointer Dereference of node in the get_vs4l_profiler_node function.
How severe is CVE-2025-54333?
CVE-2025-54333 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-54333?
Check the references section above for vendor advisories and patch information. Affected products include: Samsung Exynos 1380 Firmware, Samsung Exynos 1380.