9.8

CVE-2025-20681

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00416936; Issue ID: MSV-3446.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MediatekSoftware Development Kit Version <= 5.1.0.0
   MediatekMt6890 Version-
   MediatekMt7615 Version-
   MediatekMt7622 Version-
   MediatekMt7663 Version-
   MediatekMt7915 Version-
OpenwrtOpenwrt Version19.07.0 Update-
   MediatekMt6890 Version-
   MediatekMt7615 Version-
   MediatekMt7622 Version-
   MediatekMt7663 Version-
   MediatekMt7915 Version-
OpenwrtOpenwrt Version21.02.0 Update-
   MediatekMt6890 Version-
   MediatekMt7615 Version-
   MediatekMt7622 Version-
   MediatekMt7663 Version-
   MediatekMt7915 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.76% 0.733
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.