Samsung Exynos Untrusted Pointer Dereference Vulnerability in NPU Driver

Vulnerability

A vulnerability exists in the NPU driver of Samsung Mobile Processor Exynos, through July 2025, due to an untrusted pointer dereference of 'src_hdr' in the 'copy_ncp_header' function. This issue could potentially be exploited, leading to undefined behavior.

Impact

Exploitation of this vulnerability could result in a denial-of-service condition, causing the system to become unresponsive or unavailable.

Added: Nov 4, 2025, 5:23 PM

Updated: Nov 4, 2025, 9:33 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Exynos Untrusted Pointer Dereference Vulnerability in NPU Driver

Vulnerability

Impact

Affected Products

Samsung Exynos 1380

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating