CVE-2025-53966

CVSS v3.1

8.4

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos 1380 Samsung Mobile Processor Exynos 1480 Samsung Mobile Processor Exynos 2400 Samsung Mobile Processor Exynos 1580

Description An improper handling of the NL80211 vendor command results in a buffer overflow when processing an IOCTL message. The NL80211 command is a standard interface for wireless networking in Linux, and an IOCTL message is a system call used to control device drivers. A buffer overflow occurs when a program attempts to write data beyond the allocated memory boundary, potentially leading to system crashes or arbitrary code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2025-53966

Affected Products

Exynos 1380

Exynos 1480

Exynos 1580

Exynos 2400

CVE-2025-53966

Weakness Enumeration

Related Identifiers

Affected Products

References · 7