Primary

Context

Samsung Exynos Processors NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

A NULL pointer dereference vulnerability has been identified in Samsung Mobile Processors Exynos 1380, 1480, 2400, 1580, and 2500. The issue arises in the NPU component, specifically within the set_cpu_affinity() function, where a NULL pointer dereference of npu_proto_drv.ast.thread_ref occurs, causing a denial-of-service condition.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the system to become unresponsive or unavailable.

Added: Mar 3, 2026, 4:19 PM

Updated: Mar 3, 2026, 10:38 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.8

exploitability

2.9

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.8

exploitability

2.9

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Samsung Exynos Processors NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Samsung Exynos 1380

Samsung Exynos 1480

Samsung Exynos 2400

Samsung Exynos 1580

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating