Sign-up

ID

VAR-202511-1256


CVE

CVE-2025-20726


DESCRIPTION

In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01672598; Issue ID: MSV-4622.

Trust: 1.0

sources: NVD: CVE-2025-20726

AFFECTED PRODUCTS

vendor:mediatekmodel:lr12ascope:eqversion: -

Trust: 1.0

vendor:mediatekmodel:nr17rscope:eqversion: -

Trust: 1.0

vendor:mediatekmodel:nr17scope:eqversion: -

Trust: 1.0

vendor:mediatekmodel:nr15scope:eqversion: -

Trust: 1.0

vendor:mediatekmodel:nr16scope:eqversion: -

Trust: 1.0

sources: NVD: CVE-2025-20726

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2025-20726
value: HIGH

Trust: 1.0

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2025-20726
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.6
impactScore: 5.9
version: 3.1

Trust: 1.0

sources: NVD: CVE-2025-20726

PROBLEMTYPE DATA

problemtype:CWE-122

Trust: 1.0

problemtype:CWE-787

Trust: 1.0

sources: NVD: CVE-2025-20726

EXTERNAL IDS

db:NVDid:CVE-2025-20726

Trust: 1.0

sources: NVD: CVE-2025-20726

REFERENCES

url:https://corp.mediatek.com/product-security-bulletin/november-2025

Trust: 1.0

sources: NVD: CVE-2025-20726

SOURCES

db:NVDid:CVE-2025-20726

LAST UPDATE DATE

2025-11-20T23:10:23.896000+00:00


SOURCES UPDATE DATE

db:NVDid:CVE-2025-20726date:2025-11-05T17:16:04.053

SOURCES RELEASE DATE

db:NVDid:CVE-2025-20726date:2025-11-04T07:15:34.037