Zero Day MonitorZDM

← Back to list

7.0

CVE-2025-54602EXPLOITED

Samsung · n/a

CVE-2025-54602: An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 12

Description

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a use-after-free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.

Affected Products

Vendor	Product	Versions
Samsung	n/a	n/a

Also Affects

Downstream vendors/products affected by this vulnerability

Vendor	Product	Source	Confidence
samsung	samsung exynos	cert_advisory	90%

References

Related News (2 articles)

Tier B

BSI Advisories4h ago

[NEU] [UNGEPATCHT] [hoch] Samsung Exynos: Mehrere Schwachstellen

→ No new info (linked only)

Tier C

VulDB19h ago

CVE-2025-54602 | Samsung Samsung Mobile Processor/Wearable Processor Exynos Global Variable use after free

→ No new info (linked only)

CVSS 3.17.0 CRITICAL

VectorCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

PublishedApr 6, 2026

Last enriched4h agov3

Trending Score65

Source articles2

Independent2

Info Completeness8/14

Missing: epss, cwe, kev, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2025-54601EXP

CVE-2025-54601: An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 12

HIGHCVE-2025-59440EXP

CVE-2025-59440: An issue was discovered in USIM in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2

CRITICALCVE-2025-57835EXP

CVE-2025-57835: An issue was discovered in RRC in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21

CRITICALCVE-2025-54328

CVE-2025-54328: An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 21

HIGHCVE-2025-57834

CVE-2025-57834: An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem (Exynos 980, 850, 990, 1080, 2100, 12

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 6, 2026

Discovered by ZDM

Apr 6, 2026

Updated: description, affectedVersions, severity

Apr 6, 2026

Actively Exploited

Apr 6, 2026

Exploit Available

Apr 6, 2026

Updated: vendor, severity, exploitAvailable, activelyExploited

Apr 7, 2026

Version History

v3

Last enriched 4h ago

v3Tier B4h ago

Updated vendor to Samsung, changed severity to CRITICAL, and marked the vulnerability as actively exploited with an exploit available.

vendorseverityexploitAvailableactivelyExploited

via BSI Advisories

v2Tier C19h ago

Updated vendor to Samsung, product details, severity to CRITICAL, and clarified that no exploit is available.

descriptionaffectedVersionsseverity

via VulDB

v120h ago

Initial creation