Race Condition Vulnerability in Samsung Mobile and Wearable Processors
CVE-2025-54601

7HIGH

Key Information:

Vendor: Samsung
Status: Exynos Processors
Vendor: CVE Published:; 6 April 2026

What is CVE-2025-54601?

A vulnerability has been identified in the Wi-Fi driver associated with Samsung's Exynos processors, where improper synchronization of a global variable can lead to a double free condition. This issue enables attackers to exploit a race condition by invoking the ioctl function concurrently from different threads, potentially compromising the security of devices utilizing these processors. It is critical for users and developers to be aware of this vulnerability and implement necessary precautions and updates.

References

https://semiconductor.samsung.com/support/quality-support...

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 6, 2026
Vulnerability Reserved
Jul 27, 2025

CVE-2025-54601 Data

JSON