← Back

CVE-2025-54327

nvd nist
Published: Nov 4, 2025Modified: Nov 7, 2025

JSON object

Loading...
6.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Exploitability: 3.9 / Impact: 2.5
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

An issue was discovered in VTS in Samsung Mobile Processor and Wearable Processor Exynos 1280, 2200, 1380, W920, W930, W1000. Improper input validation in the VTS driver leads to an arbitrary write.

Affected (3)

Samsung
3 products
Exynos 1280 Firmware
Exynos 1380 Firmware
Exynos 2200 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 1280 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 1280
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 1380 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 1380
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Exynos 2200 Firmware
All versions
Running on/withPlatform Versions
Samsung
Exynos 2200
All versions

Related CWEs

CWE-20
Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory

Timeline

No history available yet.