In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01516959; Issue ID: MSV-3502.
                
            Metrics
Affected Vendors & Products
References
        History
                    Wed, 03 Sep 2025 16:45:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| First Time appeared | Mediatek Mediatek mt6813 Mediatek mt6835 Mediatek mt6835t Mediatek mt6878 Mediatek mt6878m Mediatek mt6897 Mediatek mt6899 Mediatek mt6991 Mediatek mt8676 Mediatek mt8678 Mediatek mt8792 Mediatek mt8863 Mediatek mt8873 Mediatek mt8883 Mediatek nr17 Mediatek nr17r | |
| CPEs | cpe:2.3:h:mediatek:mt6813:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6835t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6878m:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8863:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:nr17:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:nr17r:-:*:*:*:*:*:*:* | |
| Vendors & Products | Mediatek Mediatek mt6813 Mediatek mt6835 Mediatek mt6835t Mediatek mt6878 Mediatek mt6878m Mediatek mt6897 Mediatek mt6899 Mediatek mt6991 Mediatek mt8676 Mediatek mt8678 Mediatek mt8792 Mediatek mt8863 Mediatek mt8873 Mediatek mt8883 Mediatek nr17 Mediatek nr17r | 
Tue, 02 Sep 2025 13:15:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Metrics | cvssV3_1 
 
 | 
Mon, 01 Sep 2025 05:30:00 +0000
| Type | Values Removed | Values Added | 
|---|---|---|
| Description | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01516959; Issue ID: MSV-3502. | |
| Weaknesses | CWE-787 | |
| References |  | 
 MITRE
                        MITRE
                    Status: PUBLISHED
Assigner: MediaTek
Published: 2025-09-01T05:12:19.494Z
Updated: 2025-09-03T03:55:28.946Z
Reserved: 2024-11-01T01:21:50.383Z
Link: CVE-2025-20704
 Vulnrichment
                        Vulnrichment
                    Updated: 2025-09-02T13:07:14.255Z
 NVD
                        NVD
                    Status : Analyzed
Published: 2025-09-01T06:15:34.630
Modified: 2025-09-03T16:07:22.770
Link: CVE-2025-20704
 Redhat
                        Redhat
                    No data.