Nr16

nr16

Vendor: Mediatek • 57 CVEs

CVEs (57)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-20703 1Mediatek 4Nr15 Nr16Nr17+1 more Feb 17, 2026 Sep 1, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In Modem, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional...Show more In Modem, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01599794; Issue ID: MSV-3708.Show less
CVE-2025-20678 1Mediatek 6Lr12a Lr13Nr15+3 more Feb 17, 2026 Jun 2, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional...Show more In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01394606; Issue ID: MSV-2739.Show less
CVE-2025-20670 1Mediatek 3Nr16 Nr17Nr17r Feb 17, 2026 May 5, 2025 N/A· v4 5.7 MEDIUM· v3 N/A· v2 In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with Use...Show more In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with User execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01334347; Issue ID: MSV-2772.Show less
CVE-2025-20667 1Mediatek 6Lr12a Lr13Nr15+3 more Feb 17, 2026 May 5, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no ad...Show more In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01513293; Issue ID: MSV-2741.Show less
CVE-2025-20647 1Mediatek 4Nr12a Nr13Nr15+1 more Feb 17, 2026 Mar 3, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional executio...Show more In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00791311 / MOLY01067019; Issue ID: MSV-2721.Show less
CVE-2025-20644 1Mediatek 2Nr15 Nr16 Feb 17, 2026 Mar 3, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In Modem, there is a possible memory corruption due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional e...Show more In Modem, there is a possible memory corruption due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01525673; Issue ID: MSV-2747.Show less
CVE-2025-20634 1Mediatek 3Nr16 Nr17Nr17r Feb 17, 2026 Feb 3, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional exec...Show more In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01289384; Issue ID: MSV-2436.Show less
CVE-2024-20151 1Mediatek 2Nr16 Nr17 Apr 21, 2025 Jan 6, 2025 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not...Show more In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: MOLY01399339; Issue ID: MSV-1928.Show less
CVE-2024-20150 1Mediatek 5Lr12a Lr13Nr15+2 more Apr 22, 2025 Jan 6, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY...Show more In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01412526; Issue ID: MSV-2018.Show less
CVE-2024-20149 1Mediatek 6Lr12 Lr13Nr15+3 more Jan 12, 2026 Jan 6, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Pa...Show more In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01231341 / MOLY01263331 / MOLY01233835; Issue ID: MSV-2165.Show less
CVE-2024-20133 1Mediatek 1Nr16 Apr 22, 2025 Dec 2, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit...Show more In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1871.Show less
CVE-2024-20132 1Mediatek 1Nr16 Jun 25, 2025 Dec 2, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In Modem, there is a possible out of bonds write due to a mission bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploita...Show more In Modem, there is a possible out of bonds write due to a mission bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00957388; Issue ID: MSV-1872.Show less
CVE-2024-20131 1Mediatek 2Nr16 Nr17 Apr 22, 2025 Dec 2, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit...Show more In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01395886; Issue ID: MSV-1873.Show less
CVE-2024-20082 1Mediatek 3Nr15 Nr16Nr17 May 30, 2025 Aug 14, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Pat...Show more In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01182594; Issue ID: MSV-1529.Show less
CVE-2024-20070 1Mediatek 3Nr15 Nr16Nr17 Apr 25, 2025 Jun 3, 2024 N/A· v4 5.1 MEDIUM· v3 N/A· v2 In modem, there is a possible information disclosure due to using risky cryptographic algorithm during connection establishment negotiation. This could lead to remote information disclosure, when weak encryption algorith...Show more In modem, there is a possible information disclosure due to using risky cryptographic algorithm during connection establishment negotiation. This could lead to remote information disclosure, when weak encryption algorithm is used, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00942482; Issue ID: MSV-1469.Show less
CVE-2024-20068 1Mediatek 2Nr16 Nr17 Apr 25, 2025 Jun 3, 2024 N/A· v4 5.9 MEDIUM· v3 N/A· v2 In modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is no needed for exploitation. Pat...Show more In modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is no needed for exploitation. Patch ID: MOLY01270721; Issue ID: MSV-1479.Show less
CVE-2024-20067 1Mediatek 2Nr16 Nr17 Apr 25, 2025 Jun 3, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In modem, there is a possible out of bounds write due to improper input invalidation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploit...Show more In modem, there is a possible out of bounds write due to improper input invalidation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01267285; Issue ID: MSV-1462.Show less
CVE-2024-20066 1Mediatek 2Nr16 Nr17 Mar 27, 2025 Jun 3, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 In modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is no needed for exploitati...Show more In modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is no needed for exploitation. Patch ID: MOLY01267281; Issue ID: MSV-1477.Show less
CVE-2024-20039 1Mediatek 5Lr12a Lr13Nr15+2 more Apr 23, 2025 Apr 1, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploi...Show more In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01240012; Issue ID: MSV-1215.Show less
CVE-2023-32891 2Google Mediatek 5Android Lr13Nr15+2 more Jun 18, 2025 Jan 2, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for...Show more In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07933038; Issue ID: MSV-559.Show less

Previous 123 Next