CVE-2025-20797
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
Description
In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5534.
Affected (3)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 14.0 |
| Running on/with | Platform Versions |
|---|---|
Mediatek Mt2718 | All versions |
Mediatek Mt6765 | All versions |
Mediatek Mt6768 | All versions |
Mediatek Mt6781 | All versions |
Mediatek Mt6833 | All versions |
Mediatek Mt6835 | All versions |
Mediatek Mt6853 | All versions |
Mediatek Mt6855 | All versions |
Mediatek Mt6877 | All versions |
Mediatek Mt6879 | All versions |
Mediatek Mt6893 | All versions |
Mediatek Mt6985 | All versions |
Mediatek Mt6989 | All versions |
Mediatek Mt6991 | All versions |
Mediatek Mt8186 | All versions |
Mediatek Mt8188 | All versions |
Mediatek Mt8196 | All versions |
Mediatek Mt8367 | All versions |
Mediatek Mt8391 | All versions |
Mediatek Mt8676 | All versions |
Mediatek Mt8678 | All versions |
Mediatek Mt8696 | All versions |
Mediatek Mt8766 | All versions |
Mediatek Mt8768 | All versions |
Mediatek Mt8781 | All versions |
Mediatek Mt8786 | All versions |
Mediatek Mt8788e | All versions |
Mediatek Mt8791t | All versions |
Mediatek Mt8792 | All versions |
Mediatek Mt8793 | All versions |
Mediatek Mt8796 | All versions |
Mediatek Mt8873 | All versions |
Mediatek Mt8883 | All versions |
Mediatek Mt8893 | All versions |
Related CWEs
CWE-121
Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
References (1)
Source: security@mediatek.com
Vendor Advisory
Timeline
No history available yet.