CVE-2025-20659

Published: Apr 7, 2025Modified: Feb 17, 2026

6.5

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 3.6

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01519028; Issue ID: MSV-2768.

Affected (85)

Products: Mediatek: Mt2735 Firmware, Mt2737 Firmware, Mt6739 Firmware, Mt6761 Firmware, Mt6762 Firmware, Mt6762d Firmware, Mt6762m Firmware, Mt6763 Firmware, Mt6765 Firmware, Mt6765t Firmware, Mt6767 Firmware, Mt6768 Firmware, Mt6769 Firmware, Mt6769k Firmware, Mt6769s Firmware, Mt6769t Firmware, Mt6769z Firmware, Mt6771 Firmware, Mt6779 Firmware, Mt6781 Firmware, Mt6783 Firmware, Mt6785 Firmware, Mt6785t Firmware, Mt6785u Firmware, Mt6789 Firmware, Mt6813 Firmware, Mt6833 Firmware, Mt6833p Firmware, Mt6835 Firmware, Mt6835t Firmware, Mt6853 Firmware, Mt6853t Firmware, Mt6855 Firmware, Mt6855t Firmware, Mt6873 Firmware, Mt6875 Firmware, Mt6875t Firmware, Mt6877 Firmware, Mt6877t Firmware, Mt6877tt Firmware, Mt6878 Firmware, Mt6878m Firmware, Mt6879 Firmware, Mt6880 Firmware, Mt6883 Firmware, Mt6885 Firmware, Mt6886 Firmware, Mt6889 Firmware, Mt6890 Firmware, Mt6891 Firmware, Mt6893 Firmware, Mt6895 Firmware, Mt6895tt Firmware, Mt6896 Firmware, Mt6897 Firmware, Mt6899 Firmware, Mt6980 Firmware, Mt6980d Firmware, Mt6983 Firmware, Mt6983t Firmware, Mt6985 Firmware, Mt6985t Firmware, Mt6989 Firmware, Mt6989t Firmware, Mt6990 Firmware, Mt6991 Firmware, Mt8666 Firmware, Mt8667 Firmware, Mt8673 Firmware, Mt8675 Firmware, Mt8676 Firmware, Mt8678 Firmware, Mt8765 Firmware, Mt8766 Firmware, Mt8768 Firmware, Mt8771 Firmware, Mt8781 Firmware, Mt8786 Firmware, Mt8788 Firmware, Mt8788e Firmware, Mt8791t Firmware, Mt8796 Firmware, Mt8797 Firmware, Mt8798 Firmware, Mt8863 Firmware

85 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt2735 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt2735	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt2737 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt2737	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6739 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6739	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6761 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6761	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6762 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6762	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6762d Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6762d	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6762m Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6762m	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6763 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6763	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6765 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6765	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6765t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6765t	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6767 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6767	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6768 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6768	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6769 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6769	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6769k Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6769k	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6769s Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6769s	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6769t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6769t	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6769z Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6769z	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6771 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6771	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6779 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6779	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6781 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6781	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6783 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6783	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6785 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6785	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6785t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6785t	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6785u Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6785u	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6789 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6789	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6813 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6813	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6833 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6833	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6833p Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6833p	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6835 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6835	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6835t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6835t	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6853 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6853	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6853t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6853t	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6855 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6855	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6855t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6855t	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6873 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6873	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6875 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6875	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6875t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6875t	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6877 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6877	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6877t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6877t	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6877tt Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6877tt	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6878 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6878	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6878m Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6878m	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6879 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6879	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6880 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6880	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6883 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6883	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6885 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6885	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6886 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6886	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6889 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6889	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6890 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6890	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6891 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6891	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6893 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6893	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6895 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6895	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6895tt Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6895tt	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6896 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6896	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6897 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6897	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6899 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6899	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6980 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6980	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6980d Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6980d	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6983 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6983	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6983t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6983t	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6985 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6985	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6985t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6985t	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6989 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6989	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6989t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6989t	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6990 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6990	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt6991 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt6991	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8666 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8666	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8667 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8667	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8673 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8673	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8675 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8675	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8676 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8676	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8678 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8678	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8765 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8765	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8766 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8766	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8768 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8768	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8771 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8771	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8781 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8781	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8786 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8786	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8788 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8788	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8788e Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8788e	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8791t Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8791t	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8796 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8796	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8797 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8797	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8798 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8798	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mediatek Mt8863 Firmware	All versions

Running on/with	Platform Versions
Mediatek Mt8863	All versions

Related CWEs

CWE-125

Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

References (1)

https://corp.mediatek.com/product-security-bulletin/April-2025

Source: security@mediatek.com

Vendor Advisory

Timeline

No history available yet.