Skip to main content

Amd CVE-2025-54601

| EUVDEUVD-2025-209249 HIGH
Race Condition (CWE-362)
2026-04-06 mitre GHSA-q6xr-vv6x-m5gj
7.0
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.0 HIGH
AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
EUVD ID Assigned
Apr 06, 2026 - 21:00 euvd
EUVD-2025-209249
Analysis Generated
Apr 06, 2026 - 21:00 vuln.today
CVE Published
Apr 06, 2026 - 00:00 nvd
HIGH 7.0

DescriptionCVE.org

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a double free. An attacker can trigger a race condition by invoking an ioctl function concurrently from multiple threads.

AnalysisAI

Race condition in Samsung Exynos Wi-Fi drivers enables local privilege escalation to kernel execution via double-free memory corruption. Affects 11 mobile and wearable processors (Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, W1000). Local attackers with low privileges can trigger memory corruption by racing ioctl calls across threads, achieving high confidentiality, integrity, and availability impact. EPSS score of 0.02% (5th percentile) suggests minimal real-world exploitation likelihood despite CVSS 7.0 severity. No public exploit identified at time of analysis.

Technical ContextAI

This vulnerability stems from CWE-362 (Concurrent Execution using Shared Resource with Improper Synchronization) in the Wi-Fi kernel driver implementation for Samsung Exynos chipsets. The driver improperly manages concurrent access to a global variable when handling ioctl system calls, creating a time-of-check-to-time-of-use (TOCTOU) race window. When multiple threads invoke the vulnerable ioctl function simultaneously, the unsynchronized state can cause the same memory region to be freed twice (double-free condition). Double-free vulnerabilities in kernel space are particularly severe as they corrupt kernel heap metadata, potentially allowing attackers to manipulate memory allocators and achieve arbitrary code execution at ring-0 privilege level. The affected processors span Samsung's mobile (Exynos 980/1080/1280/1330/1380/1480/1580) and wearable (W920/W930/W1000) product lines, plus the cost-optimized 850 chipset, indicating widespread deployment in Android smartphones, tablets, and Galaxy Watch devices.

RemediationAI

Samsung has acknowledged the vulnerability through their semiconductor security portal and published advisory documentation at https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-54601/. Device manufacturers (OEMs) using affected Exynos chipsets should monitor Samsung's security bulletin for firmware updates containing synchronized ioctl handling in the Wi-Fi driver. End users should apply security patches distributed through Android security updates as they become available from device manufacturers. Organizations managing Samsung-powered mobile fleets should prioritize patching for devices with elevated exposure to untrusted applications or physical access scenarios. No workarounds were identified in available advisories. Until patches deploy, defense-in-depth measures include restricting installation of untrusted applications via mobile device management policies and enabling Android's verified boot to detect kernel tampering attempts.

More in Amd

View all
CVE-2021-22986 CRITICAL POC
9.8 Mar 31

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.

CVE-2020-6103 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6102 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6101 CRITICAL POC
9.9 Jul 20

An exploitable code execution vulnerability exists in the Shader functionality of AMD Radeon DirectX 11 Driver atidxx64.

CVE-2020-6100 CRITICAL POC
9.9 Jul 20

An exploitable memory corruption vulnerability exists in AMD atidxx64.dll 26.20.15019.19000 graphics driver. Rated criti

CVE-2018-6546 CRITICAL POC
9.8 Apr 13

plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming

CVE-2021-3653 HIGH POC
8.8 Sep 29

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. Rated high severity (CVSS 8.8), this vu

CVE-2020-12138 HIGH POC
8.8 Apr 27

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of se

CVE-2019-5098 HIGH POC
8.6 Dec 05

An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13001.29010. Rated high

CVE-2015-7724 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.9 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2015-7723 HIGH POC
7.8 Jun 07

AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack. Rated high severity (CVSS 7.8),

CVE-2023-1048 HIGH POC
7.8 Feb 26

A vulnerability, which was classified as critical, has been found in TechPowerUp Ryzen DRAM Calculator 1.2.0.5.sys. Rate

Share

CVE-2025-54601 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy