Ledger Reports Unpatchable Security Flaw in MediaTek Dimensity 7300 Chip

Ledger warns that the Dimensity 7300 vulnerability can endanger software-based Web3 wallets, reinforcing the importance of secure elements in crypto asset protection.

CORE

103d ago

Summary

Ledger’s Donjon security team uncovered a vulnerability in MediaTek Dimensity 7300 smartphone chips that could allow arbitrary EL3 code execution by bypassing core security checks. The flaw, exploitable through physical attacks, poses particular risks to software-only Web3 wallets. Ledger stressed that its hardware wallets remain unaffected, highlighting the role of secure elements in safeguarding digital assets.

Terms & Concepts

MediaTek Dimensity 7300: A smartphone system-on-chip developed by MediaTek, integrating CPU, GPU, and other functions.
Web3 wallet: A digital wallet used to store and manage crypto assets and interact with decentralized applications, often for blockchain-based ecosystems.
EL3 privilege level: A highly privileged execution mode in ARM architecture, typically used for secure monitor operations and trusted firmware.