CVE-2025-54331

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Untrusted Pointer Dereference of srchdr in the copyncpheader function...

CVE-2025-47368 Buffer Over-read in DSP Service

Memory corruption when dereferencing an invalid userspace address in a user buffer during MCDM IOCTL processing...

CVE-2025-27374

CVE-2025-27374 affects Samsung’s Secure Boot component on Exynos Mobile/Wearable Processors (models listed in the document). The issue is a missing length check that can lead to out-of-bounds writes. The connected records repeatedly describe the same flaw but do not provide concrete exploit detai...

PT-2025-45024

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos versions through July 2025 Description An issue exists in the NPU within Samsung Mobile Processor Exynos. Specifically, an invalid pointer dereference occurs within the get vs4l profiler node function when...

PT-2025-45021

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor Exynos versions through July 2025 Description An out-of-bounds read issue exists in the NPU of Samsung Mobile Processor Exynos. Specifically, the issue resides in the is done for me function, involving a read of q-bufs...

SAMSUNG Mobile Processor Exynos 安全漏洞

SAMSUNG Mobile Processor Exynos is a system-on-chip SoC from South Korea's Samsung SAMSUNG dedicated to smartphones and tablets. A security vulnerability exists in SAMSUNG Mobile Processor Exynos July 2025 and earlier, which stems from an out-of-bounds read of q-bufs in the isdoneforme function...

CVE-2025-52910

An issue was discovered in the GPU in Samsung Mobile Processor and Wearable Processor Exynos 1280, 2200, 1330, 1380, 1480, 2400. A Use-After-Free leads to privilege escalation...

SAMSUNG多款产品 安全漏洞

SAMSUNG Exynos 1080 and others are products of Samsung South Korea.SAMSUNG Exynos 1080 is a processor for mobile devices.SAMSUNG Exynos 1280 is a processor for mobile devices.SAMSUNG Exynos 1480 is a processor for cellular chips. A security vulnerability exists in various SAMSUNG products that...

CVE-2025-54323

Summary: CVE-2025-54323 describes an information leakage due to improper debug printing in the camera of Samsung Mobile Processor Exynos SoCs (980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580). Affected components/versions: Samsung Exynos camera functionality across listed proc...

CVE-2025-52512

An issue was discovered in Samsung Mobile Processor Exynos 2400, 1580, 2500. A race condition in the HTS driver results in out-of-bounds memory access, leading to a denial of service...

CVE-2025-54331

An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Untrusted Pointer Dereference of srchdr in the copyncpheader function...

PT-2025-45046

Name of the Vulnerable Software and Affected Versions Samsung Mobile Processor and Wearable Processor Exynos 1280 Samsung Mobile Processor and Wearable Processor Exynos 2200 Samsung Mobile Processor and Wearable Processor Exynos 1330 Samsung Mobile Processor and Wearable Processor Exynos 1380...

PT-2025-45039

🚨 CVE-2025-54327 An issue was discovered in VTS in Samsung Mobile Processor and Wearable Processor Exynos 1280, 2200, 1380, W920, W930, W1000. Improper input validation in the VTS driver leads to an arbitrary write. 🎖@cveNotify...

⚡ Weekly Recap: Lazarus Hits Web3, Intel/AMD TEEs Cracked, Dark Web Leak Tool & More

Cyberattacks are getting smarter and harder to stop. This week, hackers used sneaky tools, tricked trusted systems, and quickly took advantage of new security problems—some just hours after being found. No system was fully safe. From spying and fake job scams to strong ransomware and tricky...

CLSA-2025-1762171389 kernel: Fix of 15 CVEs

nfs: fix possible null-ptr-deref when parsing param CVE-2022-50455 - KVM: arm64: Disassociate vcpus from redistributor region on teardown CVE-2024-40989 - HID: core: Harden s32ton against conversion to 0 bits CVE-2025-38556 - ALSA: usb-audio: Validate UAC3 cluster segment descriptors...

Important: Red Hat Security Advisory: Red Hat Enterprise Linux AI 1.5 (AMD)

Red Hat Enterprise Linux AI 1.5 AMD is now available. Red Hat® Enterprise Linux® AI is a foundation model platform to seamlessly develop, test, and run Granite family large language models LLMs for enterprise applications...

CVE-2024-14003

Nagios XI versions prior to 2024R1.2 are vulnerable to remote code execution RCE through its NRDP Nagios Remote Data Processor server plugins. Insufficient validation of inbound NRDP request parameters allows crafted input to reach command execution paths, enabling attackers to execute arbitrary...

USN-7835-4: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

CVE-2025-58147

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause...

CVE-2025-58147

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause...