← Back

Mediatek

mediatek

258 CVEs • 582 products

Products (582)

Click to collapse
Toggle
Software Development Kit
software_development_kit
71 CVEs
Nr15
nr15
65 CVEs
Nr16
nr16
57 CVEs
Nr17
nr17
48 CVEs
Mt7615 Firmware
mt7615_firmware
38 CVEs
Mt7622 Firmware
mt7622_firmware
37 CVEs
Mt7915 Firmware
mt7915_firmware
37 CVEs
Mt7613 Firmware
mt7613_firmware
36 CVEs
Mt7628 Firmware
mt7628_firmware
36 CVEs
Mt7629 Firmware
mt7629_firmware
36 CVEs
Iot Yocto
iot_yocto
24 CVEs
Nr17r
nr17r
20 CVEs
Mt7603e Firmware
mt7603e_firmware
20 CVEs
Mt7612 Firmware
mt7612_firmware
18 CVEs
Mt7620 Firmware
mt7620_firmware
18 CVEs
Lr12a
lr12a
17 CVEs
Mt7610 Firmware
mt7610_firmware
17 CVEs
Mt7916 Firmware
mt7916_firmware
17 CVEs
Mt7986 Firmware
mt7986_firmware
17 CVEs
Mt7603 Firmware
mt7603_firmware
16 CVEs
Lr13
lr13
15 CVEs
Mt6899 Firmware
mt6899_firmware
12 CVEs
Mt6991 Firmware
mt6991_firmware
12 CVEs
Mt6989 Firmware
mt6989_firmware
11 CVEs
Mt8791t Firmware
mt8791t_firmware
11 CVEs
Mt8793 Firmware
mt8793_firmware
11 CVEs
Mt6877 Firmware
mt6877_firmware
10 CVEs
Mt6897 Firmware
mt6897_firmware
10 CVEs
Nbiot Sdk
nbiot_sdk
9 CVEs
Mt7981 Firmware
mt7981_firmware
9 CVEs
Mt6835 Firmware
mt6835_firmware
9 CVEs
Mt6878 Firmware
mt6878_firmware
9 CVEs
Mt6985 Firmware
mt6985_firmware
9 CVEs
Mt8981 Firmware
mt8981_firmware
8 CVEs
Mt7902 Firmware
mt7902_firmware
8 CVEs
Mt7921 Firmware
mt7921_firmware
8 CVEs
Mt8788 Firmware
mt8788_firmware
8 CVEs
Mt6789 Firmware
mt6789_firmware
8 CVEs
Mt6853 Firmware
mt6853_firmware
8 CVEs
Mt6855 Firmware
mt6855_firmware
8 CVEs
Mt6879 Firmware
mt6879_firmware
8 CVEs
Mt6883 Firmware
mt6883_firmware
8 CVEs
Mt6885 Firmware
mt6885_firmware
8 CVEs
Mt6886 Firmware
mt6886_firmware
8 CVEs
Mt6889 Firmware
mt6889_firmware
8 CVEs
Mt6893 Firmware
mt6893_firmware
8 CVEs
Mt6895 Firmware
mt6895_firmware
8 CVEs
Mt6983 Firmware
mt6983_firmware
8 CVEs
Mt8673 Firmware
mt8673_firmware
8 CVEs
Mt8781 Firmware
mt8781_firmware
8 CVEs
Mt8797 Firmware
mt8797_firmware
8 CVEs
Mt8798 Firmware
mt8798_firmware
8 CVEs
Mt6768 Firmware
mt6768_firmware
7 CVEs
Mt8676 Firmware
mt8676_firmware
7 CVEs
Mt8678 Firmware
mt8678_firmware
7 CVEs
Mt8766 Firmware
mt8766_firmware
7 CVEs
Mt8768 Firmware
mt8768_firmware
7 CVEs
Mt8786 Firmware
mt8786_firmware
7 CVEs
Mt8775 Firmware
mt8775_firmware
7 CVEs
Mt8792 Firmware
mt8792_firmware
7 CVEs
Mt8365 Firmware
mt8365_firmware
6 CVEs
En7580 Firmware
en7580_firmware
6 CVEs
En7528 Firmware
en7528_firmware
6 CVEs
Mt6765 Firmware
mt6765_firmware
6 CVEs
Mt6781 Firmware
mt6781_firmware
6 CVEs
Mt6813 Firmware
mt6813_firmware
6 CVEs
Mt6890 Firmware
mt6890_firmware
6 CVEs
Mt8863 Firmware
mt8863_firmware
6 CVEs
Mt6993 Firmware
mt6993_firmware
6 CVEs
Mt8873 Firmware
mt8873_firmware
6 CVEs
Mt8883 Firmware
mt8883_firmware
6 CVEs
Mt8893 Firmware
mt8893_firmware
6 CVEs
Mt8910 Firmware
mt8910_firmware
6 CVEs
Mt8518s Firmware
mt8518s_firmware
5 CVEs
Mt8532 Firmware
mt8532_firmware
5 CVEs
Mt2735 Firmware
mt2735_firmware
5 CVEs
Mt2737 Firmware
mt2737_firmware
5 CVEs
Mt6739 Firmware
mt6739_firmware
5 CVEs
Mt6761 Firmware
mt6761_firmware
5 CVEs
Mt6833 Firmware
mt6833_firmware
5 CVEs
Mt6873 Firmware
mt6873_firmware
5 CVEs
Mt6875 Firmware
mt6875_firmware
5 CVEs
Mt6880 Firmware
mt6880_firmware
5 CVEs
Mt6891 Firmware
mt6891_firmware
5 CVEs
Mt6896 Firmware
mt6896_firmware
5 CVEs
Mt6980 Firmware
mt6980_firmware
5 CVEs
Mt6990 Firmware
mt6990_firmware
5 CVEs
Mt8675 Firmware
mt8675_firmware
5 CVEs
Mt8771 Firmware
mt8771_firmware
5 CVEs
Mt8668 Firmware
mt8668_firmware
5 CVEs
Mt8755 Firmware
mt8755_firmware
5 CVEs
Modem
modem
4 CVEs
Lr11
lr11
4 CVEs
Lr12
lr12
4 CVEs
Mt5221 Firmware
mt5221_firmware
4 CVEs
Mt7668 Firmware
mt7668_firmware
4 CVEs
Mt8167s Firmware
mt8167s_firmware
4 CVEs
Mt8175 Firmware
mt8175_firmware
4 CVEs
Mt8362a Firmware
mt8362a_firmware
4 CVEs
Mt8385 Firmware
mt8385_firmware
4 CVEs

CVEs (258)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-20456
1Mediatek
6Mt7902 Firmware
Mt7920 FirmwareMt7921 Firmware+3 more
Jun 1, 2026
Jun 1, 2026
N/A· v4
5.5 MEDIUM· v3
N/A· v2
In wlan STA driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch...Show more
In wlan STA driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00480851; Issue ID: MSV-6338.Show less
CVE-2026-20455
1Mediatek
36Mt6739 Firmware
Mt6761 FirmwareMt6765 Firmware+33 more
Jun 1, 2026
Jun 1, 2026
N/A· v4
7.8 HIGH· v3
N/A· v2
In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is no...Show more
In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10873936; Issue ID: MSV-6784.Show less
CVE-2026-20454
1Mediatek
36Mt6739 Firmware
Mt6761 FirmwareMt6765 Firmware+33 more
Jun 1, 2026
Jun 1, 2026
N/A· v4
6.4 MEDIUM· v3
N/A· v2
In geniezone, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not need...Show more
In geniezone, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10873936; Issue ID: MSV-6786.Show less
CVE-2026-20453
1Mediatek
36Mt6739 Firmware
Mt6761 FirmwareMt6765 Firmware+33 more
Jun 1, 2026
Jun 1, 2026
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is no...Show more
In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10886526; Issue ID: MSV-6791.Show less
CVE-2026-20452
1Mediatek
9Mt6890 Firmware
Mt7615 FirmwareMt7915 Firmware+6 more
Jun 1, 2026
Jun 1, 2026
N/A· v4
8.0 HIGH· v3
N/A· v2
In wlan AP driver, there is a possible memory corruption due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with User execution privileges needed. User interaction is not needed f...Show more
In wlan AP driver, there is a possible memory corruption due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00480138; Issue ID: MSV-6295.Show less
CVE-2026-20451
1Mediatek
32Mt2718 Firmware
Mt6899 FirmwareMt6985 Firmware+29 more
May 7, 2026
May 4, 2026
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In slbc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for...Show more
In slbc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10828685; Issue ID: MSV-6504.Show less
CVE-2026-20450
1Mediatek
51Mt2735 Firmware
Mt2737 FirmwareMt6833 Firmware+48 more
May 7, 2026
May 4, 2026
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execut...Show more
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01753620; Issue ID: MSV-6100.Show less
CVE-2026-20449
1Mediatek
68Mt2735 Firmware
Mt2737 FirmwareMt6739 Firmware+65 more
May 7, 2026
May 4, 2026
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional executio...Show more
In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01760138; Issue ID: MSV-6148.Show less
CVE-2026-20448
1Mediatek
22Mt6765 Firmware
Mt6768 FirmwareMt6789 Firmware+19 more
May 7, 2026
May 4, 2026
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In geniezone, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interacti...Show more
In geniezone, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10708513; Issue ID: MSV-6281.Show less
CVE-2026-20447
1Mediatek
17Mt6768 Firmware
Mt6789 FirmwareMt6877 Firmware+14 more
May 7, 2026
May 4, 2026
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction i...Show more
In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10724073; Issue ID: MSV-6296.Show less
CVE-2026-20446
1Mediatek
1Mt6813 Firmware
Apr 7, 2026
Apr 7, 2026
N/A· v4
4.3 MEDIUM· v3
N/A· v2
In sec boot, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service, if an attacker has physical access to the device, with User execution privileges needed. User i...Show more
In sec boot, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service, if an attacker has physical access to the device, with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09963054; Issue ID: MSV-3899.Show less
CVE-2026-20433
1Mediatek
62Mt2735 Firmware
Mt2737 FirmwareMt6813 Firmware+59 more
Apr 10, 2026
Apr 7, 2026
N/A· v4
8.8 HIGH· v3
N/A· v2
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additi...Show more
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01088681; Issue ID: MSV-4460.Show less
CVE-2026-20432
1Mediatek
58Mt2735 Firmware
Mt2737 FirmwareMt6779 Firmware+55 more
Apr 10, 2026
Apr 7, 2026
N/A· v4
8.0 HIGH· v3
N/A· v2
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additi...Show more
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01406170; Issue ID: MSV-4461.Show less
CVE-2026-20431
1Mediatek
19Mt6813 Firmware
Mt6815 FirmwareMt6835 Firmware+16 more
Apr 10, 2026
Apr 7, 2026
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privile...Show more
In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01106496; Issue ID: MSV-4467.Show less
CVE-2026-20436
1Mediatek
1Nbiot Sdk
Mar 3, 2026
Mar 2, 2026
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interac...Show more
In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00473802; Issue ID: MSV-5970.Show less
CVE-2026-20434
1Mediatek
5Lr12a
Lr13Nr15+2 more
Mar 2, 2026
Mar 2, 2026
N/A· v4
7.5 HIGH· v3
N/A· v2
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additi...Show more
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY00782946; Issue ID: MSV-4135.Show less
CVE-2026-20430
2Mediatek
Openwrt
2Openwrt
Software Development Kit
Mar 2, 2026
Mar 2, 2026
N/A· v4
8.8 HIGH· v3
N/A· v2
In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interact...Show more
In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00467553; Issue ID: MSV-5151.Show less
CVE-2026-20423
1Mediatek
1Nbiot Sdk
Mar 3, 2026
Mar 2, 2026
N/A· v4
7.8 HIGH· v3
N/A· v2
In wlan STA driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploi...Show more
In wlan STA driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00465314; Issue ID: MSV-4956.Show less
CVE-2026-20422
1Mediatek
4Nr15
Nr16Nr17+1 more
Feb 17, 2026
Feb 2, 2026
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execu...Show more
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00827332; Issue ID: MSV-5919.Show less
CVE-2026-20421
1Mediatek
1Nr15
Feb 17, 2026
Feb 2, 2026
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execu...Show more
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01738293; Issue ID: MSV-5922.Show less