Input Validation Flaw in Unisoc Modem Leading to Potential Remote Exploitation
CVE-2025-31718

7.5HIGH

Key Information:

Vendor

Unisoc (shanghai) Technologies Co., Ltd.

Status
T606/t612/t616/t750/t765/t760/t770/t820/s8000/t8300/t9300
Vendor
CVE Published:
11 October 2025

What is CVE-2025-31718?

A vulnerability exists in Unisoc's modem where improper input validation can potentially lead to a system crash. Attackers exploiting this flaw may gain remote escalation of privileges, performing unauthorized actions without needing additional execution privileges. This situation underscores the importance of robust input validation mechanisms to mitigate associated risks.

Affected Version(s)

T606/T612/T616/T750/T765/T760/T770/T820/S8000/T8300/T9300 Android13/Android14/Android15/Android16

References

https://www.unisoc.com/en/support/announcement/1976557615...

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.