AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2025-69893: A side-channel vulnerability exists in the implementation of BIP-39 mnemonic processing, as observed in Trezor One v1.13

infovulnerability

security

Source: NVD/CVE DatabaseApril 14, 2026CVE-2025-69893

Summary

A side-channel vulnerability (a security flaw where attackers extract secrets by analyzing physical signals like power consumption or timing) exists in how Trezor hardware wallets process BIP-39 mnemonics (seed phrases used to generate cryptocurrency keys) in versions 1.13.0 to 1.14.0. An attacker with physical access during wallet setup could use deep learning analysis to recover the mnemonic and steal assets, but the issue was patched.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Disclosure Date

April 14, 2026

Classification

Attack SophisticationAdvanced

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2025-69893

First tracked: April 14, 2026 at 02:07 PM

Classified by LLM (prompt v3) · confidence: 95%