← Back

CVE-2025-20705

nvd nist
Published: Sep 1, 2025Modified: Sep 3, 2025

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In monitor_hang, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09989078; Issue ID: MSV-3964.

Affected (7)

Google
1 product
Android
Linuxfoundation
1 product
Yocto
Openwrt
1 product
Openwrt
Configuration A
7 vulnerable · 39 platform
Vulnerable SoftwareAffected Versions
Google
Android
Version 13.0
Android
Version 14.0
Android
Version 15.0
Android
Version 16.0
Yocto
Version 2.6
Openwrt
Openwrt
Version 19.07.0
Openwrt
Version 21.02.0
Running on/withPlatform Versions
Mediatek
Mt2718
All versions
Mediatek
Mt2735
All versions
Mediatek
Mt6739
All versions
Mediatek
Mt6761
All versions
Mediatek
Mt6765
All versions
Mediatek
Mt6768
All versions
Mediatek
Mt6781
All versions
Mediatek
Mt6789
All versions
Mediatek
Mt6835
All versions
Mediatek
Mt6853
All versions
Mediatek
Mt6855
All versions
Mediatek
Mt6877
All versions
Mediatek
Mt6878
All versions
Mediatek
Mt6879
All versions
Mediatek
Mt6880
All versions
Mediatek
Mt6883
All versions
Mediatek
Mt6885
All versions
Mediatek
Mt6886
All versions
Mediatek
Mt6889
All versions
Mediatek
Mt6890
All versions
Mediatek
Mt6893
All versions
Mediatek
Mt6895
All versions
Mediatek
Mt6897
All versions
Mediatek
Mt6899
All versions
Mediatek
Mt6980d
All versions
Mediatek
Mt6983
All versions
Mediatek
Mt6985
All versions
Mediatek
Mt6989
All versions
Mediatek
Mt6990
All versions
Mediatek
Mt6991
All versions
Mediatek
Mt8169
All versions
Mediatek
Mt8186
All versions
Mediatek
Mt8188
All versions
Mediatek
Mt8676
All versions
Mediatek
Mt8678
All versions
Mediatek
Mt8696
All versions
Mediatek
Mt8775
All versions
Mediatek
Mt8792
All versions
Mediatek
Mt8796
All versions

Related CWEs

CWE-416
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (1)

Source: security@mediatek.com
Vendor Advisory

Timeline

No history available yet.