CVE-2025-31711

EUVD-2025-16708
In cplog service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with no additional execution privileges needed.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.1 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
UnisocCNA
5.1 MEDIUM
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
googleandroid
13.0
googleandroid
14.0
googleandroid
15.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.unisoc.com/en_us/secy/announcementDetail/1929773763314909186