Samsung Exynos Processors Invalid Pointer Dereference Vulnerability in NPU Driver

Vulnerability

A vulnerability exists in the NPU component of Samsung Mobile Processor Exynos, through July 2025, due to an invalid pointer dereference of 'node' in the 'get_vs4l_profiler_node' function. This issue could potentially be exploited, leading to unspecified consequences.

Impact

Exploitation of this vulnerability causes a medium-severity invalid pointer dereference, which can lead to memory corruption or a crash of the affected component.

Added: Nov 4, 2025, 6:20 PM

Updated: Nov 4, 2025, 9:30 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

3.3

remediation

0.0

relevance

0.9

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Exynos Processors Invalid Pointer Dereference Vulnerability in NPU Driver

Vulnerability

Impact

Affected Products

Samsung Exynos 1380

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating