Security Bulletin
Summary
- Security CVES
- Medium CVE-2025-31719
Minutia
- CVE ID CVE-2025-31719
- Title Improper Initialization in TEE EcDSA algorithm
- Description
In TEE EcDSA algorithm, there is a possible memory consistency issue. This could lead to generated incorrect signature results with low probability.
- Technology Area TEE
- Vulnerability Type CWE-665 Improper Initialization
- Access Vector Local
- CVSS Rating Medium
- CVSS Score 5.1
- CVSS String CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
- Affected Chipsets*
SC7731E/SC9832E/SC9863A/T310/T606/T612/T616/T610/T618/T750/T765/T760/T770/T820/S8000/T8300/T9300
- Affected Software Versions
Android13/Android14/Android15/Android16
*The list of affected chipsets may not be complete. For latest information, device OEMs can contact directly at https://unisupport.unisoc.com
Vulnerability type definition
- Abbreviation Interpretation
- RCE Remote Code Execution
- EoP Elevation of Privilege
- ID Information Disclosure
- DoS Denial of Service
- N/A Classification not available
Version
- Version Date Description
- 1.0 2025-11-01