← Back

Mediatek

mediatek

258 CVEs • 582 products

Products (582)

Click to collapse
Toggle
Software Development Kit
software_development_kit
71 CVEs
Nr15
nr15
65 CVEs
Nr16
nr16
57 CVEs
Nr17
nr17
48 CVEs
Mt7615 Firmware
mt7615_firmware
38 CVEs
Mt7622 Firmware
mt7622_firmware
37 CVEs
Mt7915 Firmware
mt7915_firmware
37 CVEs
Mt7613 Firmware
mt7613_firmware
36 CVEs
Mt7628 Firmware
mt7628_firmware
36 CVEs
Mt7629 Firmware
mt7629_firmware
36 CVEs
Iot Yocto
iot_yocto
24 CVEs
Nr17r
nr17r
20 CVEs
Mt7603e Firmware
mt7603e_firmware
20 CVEs
Mt7612 Firmware
mt7612_firmware
18 CVEs
Mt7620 Firmware
mt7620_firmware
18 CVEs
Lr12a
lr12a
17 CVEs
Mt7610 Firmware
mt7610_firmware
17 CVEs
Mt7916 Firmware
mt7916_firmware
17 CVEs
Mt7986 Firmware
mt7986_firmware
17 CVEs
Mt7603 Firmware
mt7603_firmware
16 CVEs
Lr13
lr13
15 CVEs
Mt6899 Firmware
mt6899_firmware
12 CVEs
Mt6991 Firmware
mt6991_firmware
12 CVEs
Mt6989 Firmware
mt6989_firmware
11 CVEs
Mt8791t Firmware
mt8791t_firmware
11 CVEs
Mt8793 Firmware
mt8793_firmware
11 CVEs
Mt6877 Firmware
mt6877_firmware
10 CVEs
Mt6897 Firmware
mt6897_firmware
10 CVEs
Nbiot Sdk
nbiot_sdk
9 CVEs
Mt7981 Firmware
mt7981_firmware
9 CVEs
Mt6835 Firmware
mt6835_firmware
9 CVEs
Mt6878 Firmware
mt6878_firmware
9 CVEs
Mt6985 Firmware
mt6985_firmware
9 CVEs
Mt8981 Firmware
mt8981_firmware
8 CVEs
Mt7902 Firmware
mt7902_firmware
8 CVEs
Mt7921 Firmware
mt7921_firmware
8 CVEs
Mt8788 Firmware
mt8788_firmware
8 CVEs
Mt6789 Firmware
mt6789_firmware
8 CVEs
Mt6853 Firmware
mt6853_firmware
8 CVEs
Mt6855 Firmware
mt6855_firmware
8 CVEs
Mt6879 Firmware
mt6879_firmware
8 CVEs
Mt6883 Firmware
mt6883_firmware
8 CVEs
Mt6885 Firmware
mt6885_firmware
8 CVEs
Mt6886 Firmware
mt6886_firmware
8 CVEs
Mt6889 Firmware
mt6889_firmware
8 CVEs
Mt6893 Firmware
mt6893_firmware
8 CVEs
Mt6895 Firmware
mt6895_firmware
8 CVEs
Mt6983 Firmware
mt6983_firmware
8 CVEs
Mt8673 Firmware
mt8673_firmware
8 CVEs
Mt8781 Firmware
mt8781_firmware
8 CVEs
Mt8797 Firmware
mt8797_firmware
8 CVEs
Mt8798 Firmware
mt8798_firmware
8 CVEs
Mt6768 Firmware
mt6768_firmware
7 CVEs
Mt8676 Firmware
mt8676_firmware
7 CVEs
Mt8678 Firmware
mt8678_firmware
7 CVEs
Mt8766 Firmware
mt8766_firmware
7 CVEs
Mt8768 Firmware
mt8768_firmware
7 CVEs
Mt8786 Firmware
mt8786_firmware
7 CVEs
Mt8775 Firmware
mt8775_firmware
7 CVEs
Mt8792 Firmware
mt8792_firmware
7 CVEs
Mt8365 Firmware
mt8365_firmware
6 CVEs
En7580 Firmware
en7580_firmware
6 CVEs
En7528 Firmware
en7528_firmware
6 CVEs
Mt6765 Firmware
mt6765_firmware
6 CVEs
Mt6781 Firmware
mt6781_firmware
6 CVEs
Mt6813 Firmware
mt6813_firmware
6 CVEs
Mt6890 Firmware
mt6890_firmware
6 CVEs
Mt8863 Firmware
mt8863_firmware
6 CVEs
Mt6993 Firmware
mt6993_firmware
6 CVEs
Mt8873 Firmware
mt8873_firmware
6 CVEs
Mt8883 Firmware
mt8883_firmware
6 CVEs
Mt8893 Firmware
mt8893_firmware
6 CVEs
Mt8910 Firmware
mt8910_firmware
6 CVEs
Mt8518s Firmware
mt8518s_firmware
5 CVEs
Mt8532 Firmware
mt8532_firmware
5 CVEs
Mt2735 Firmware
mt2735_firmware
5 CVEs
Mt2737 Firmware
mt2737_firmware
5 CVEs
Mt6739 Firmware
mt6739_firmware
5 CVEs
Mt6761 Firmware
mt6761_firmware
5 CVEs
Mt6833 Firmware
mt6833_firmware
5 CVEs
Mt6873 Firmware
mt6873_firmware
5 CVEs
Mt6875 Firmware
mt6875_firmware
5 CVEs
Mt6880 Firmware
mt6880_firmware
5 CVEs
Mt6891 Firmware
mt6891_firmware
5 CVEs
Mt6896 Firmware
mt6896_firmware
5 CVEs
Mt6980 Firmware
mt6980_firmware
5 CVEs
Mt6990 Firmware
mt6990_firmware
5 CVEs
Mt8675 Firmware
mt8675_firmware
5 CVEs
Mt8771 Firmware
mt8771_firmware
5 CVEs
Mt8668 Firmware
mt8668_firmware
5 CVEs
Mt8755 Firmware
mt8755_firmware
5 CVEs
Modem
modem
4 CVEs
Lr11
lr11
4 CVEs
Lr12
lr12
4 CVEs
Mt5221 Firmware
mt5221_firmware
4 CVEs
Mt7668 Firmware
mt7668_firmware
4 CVEs
Mt8167s Firmware
mt8167s_firmware
4 CVEs
Mt8175 Firmware
mt8175_firmware
4 CVEs
Mt8362a Firmware
mt8362a_firmware
4 CVEs
Mt8385 Firmware
mt8385_firmware
4 CVEs

CVEs (258)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-20677
1Mediatek
1Nbiot Sdk
Jul 10, 2025
Jun 2, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
In Bluetooth driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch...Show more
In Bluetooth driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412256; Issue ID: MSV-3284.Show less
CVE-2025-20676
1Mediatek
1Nbiot Sdk
Jul 10, 2025
Jun 2, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch...Show more
In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412240; Issue ID: MSV-3293.Show less
CVE-2025-20675
1Mediatek
5Mt7902 Firmware
Mt7921 FirmwareMt7922 Firmware+2 more
Jul 2, 2025
Jun 2, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch...Show more
In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00413201; Issue ID: MSV-3302.Show less
CVE-2025-20674
2Mediatek
Openwrt
2Openwrt
Software Development Kit
Jul 18, 2025
Jun 2, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In wlan AP driver, there is a possible way to inject arbitrary packet due to a missing permission check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction...Show more
In wlan AP driver, there is a possible way to inject arbitrary packet due to a missing permission check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00413202; Issue ID: MSV-3303.Show less
CVE-2025-20673
1Mediatek
5Mt7902 Firmware
Mt7921 FirmwareMt7922 Firmware+2 more
Jul 2, 2025
Jun 2, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch...Show more
In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00413200; Issue ID: MSV-3304.Show less
CVE-2025-20672
1Mediatek
5Mt7902 Firmware
Mt7921 FirmwareMt7922 Firmware+2 more
Jul 2, 2025
Jun 2, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for ex...Show more
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412257; Issue ID: MSV-3292.Show less
CVE-2025-20670
1Mediatek
3Nr16
Nr17Nr17r
Feb 17, 2026
May 5, 2025
N/A· v4
5.7 MEDIUM· v3
N/A· v2
In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with Use...Show more
In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with User execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01334347; Issue ID: MSV-2772.Show less
CVE-2025-20667
1Mediatek
6Lr12a
Lr13Nr15+3 more
Feb 17, 2026
May 5, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no ad...Show more
In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01513293; Issue ID: MSV-2741.Show less
CVE-2025-20666
1Mediatek
1Nr15
Feb 17, 2026
May 5, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution...Show more
In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00650610; Issue ID: MSV-2933.Show less
CVE-2025-20664
1Mediatek
7Mt7915
Mt7916Mt7981+4 more
Apr 11, 2025
Apr 7, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
In wlan AP driver, there is a possible information disclosure due to an uncaught exception. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User intera...Show more
In wlan AP driver, there is a possible information disclosure due to an uncaught exception. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00406217; Issue ID: MSV-2773.Show less
CVE-2025-20663
1Mediatek
5Mt7915
Mt7916Mt7981+2 more
Apr 11, 2025
Apr 7, 2025
N/A· v4
7.5 HIGH· v3
N/A· v2
In wlan AP driver, there is a possible information disclosure due to an uncaught exception. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User intera...Show more
In wlan AP driver, there is a possible information disclosure due to an uncaught exception. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00408868; Issue ID: MSV-3031.Show less
CVE-2025-20662
2Google
Mediatek
2Android
Mt9972
Apr 14, 2025
Apr 7, 2025
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In PlayReady TA, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is...Show more
In PlayReady TA, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: DTV04428276; Issue ID: MSV-3184.Show less
CVE-2025-20661
2Google
Mediatek
2Android
Mt9972
Apr 14, 2025
Apr 7, 2025
N/A· v4
6.7 MEDIUM· v3
N/A· v2
In PlayReady TA, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is...Show more
In PlayReady TA, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: DTV04436357; Issue ID: MSV-3185.Show less
CVE-2025-20659
1Mediatek
85Mt2735 Firmware
Mt2737 FirmwareMt6739 Firmware+82 more
Feb 17, 2026
Apr 7, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execu...Show more
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01519028; Issue ID: MSV-2768.Show less
CVE-2025-20658
2Google
Mediatek
19Android
Mt2718Mt6781+16 more
Apr 9, 2025
Apr 7, 2025
N/A· v4
6.0 MEDIUM· v3
N/A· v2
In DA, there is a possible permission bypass due to a logic error. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User...Show more
In DA, there is a possible permission bypass due to a logic error. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09474894; Issue ID: MSV-2597.Show less
CVE-2025-20656
5Google
LinuxfoundationMediatek+2 more
20Android
Mt6781Mt6789+17 more
Apr 9, 2025
Apr 7, 2025
N/A· v4
6.8 MEDIUM· v3
N/A· v2
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges ne...Show more
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09625423; Issue ID: MSV-3033.Show less
CVE-2025-20655
2Google
Mediatek
2Android
Mt9972
Apr 9, 2025
Apr 7, 2025
N/A· v4
5.3 MEDIUM· v3
N/A· v2
In keymaster, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not...Show more
In keymaster, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: DTV04427687; Issue ID: MSV-3183.Show less
CVE-2025-20654
2Mediatek
Openwrt
8Mt6890
Mt7622Mt7915+5 more
Apr 9, 2025
Apr 7, 2025
N/A· v4
9.8 CRITICAL· v3
N/A· v2
In wlan service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for explo...Show more
In wlan service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00406897; Issue ID: MSV-2875.Show less
CVE-2025-20649
2Mediatek
Openwrt
2Openwrt
Software Development Kit
Apr 22, 2025
Mar 3, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Bluetooth Stack SW, there is a possible information disclosure due to a missing permission check. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. Us...Show more
In Bluetooth Stack SW, there is a possible information disclosure due to a missing permission check. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00396437; Issue ID: MSV-2184.Show less
CVE-2025-20647
1Mediatek
4Nr12a
Nr13Nr15+1 more
Feb 17, 2026
Mar 3, 2025
N/A· v4
6.5 MEDIUM· v3
N/A· v2
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional executio...Show more
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00791311 / MOLY01067019; Issue ID: MSV-2721.Show less