Vulnerability
CVE-2025-20645
Component: TRUST
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation.
Recent vulnerability.
This is a recently discovered vulnerability. Some information might be missing, as involved parties are still to publish further information. We periodically update vulnerability information to reflect eventual changes.
Impact
Severity (Manufact.)
HIGH
Severity (NIST)
N/A
Severity (Android)
N/A
Chipsets
23
Devices
397
Affected Hardware
| Name | Also known as | Manufacturer |
|---|---|---|
| MT6765 | Helio P35 | MediaTek |
| MT6768 | Helio P65 | MediaTek |
| MT6833 | Dimensity 6020 Dimensity 700 | MediaTek |
| MT6833 | Dimensity 6080 Dimensity 810 | MediaTek |
| MT6855 | Dimensity 930 | MediaTek |
| MT6879 | Dimensity 1050 | MediaTek |
| MT6893 | Dimensity 1200 | MediaTek |
| MT6886 | Dimensity 7200 | MediaTek |
| MT6893 | Dimensity 1300 Dimensity 8050 _T | MediaTek |
| MT6983 | Dimensity 9000 | MediaTek |
23 of 23 row(s) shown.
Rows per page
Page 1 of 3
Information reliability
The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.
Timeline
Introduced (est):
Oct 1, 2018
Reported:
Unknown
Advisory Published:
Mar 3, 2025
CVE Published:
N/A
Android Patch Level:
Mar 2025
