6.5
CVE-2026-20431
- EPSS 0.31%
- Veröffentlicht 07.04.2026 03:25:28
- Zuletzt bearbeitet 10.04.2026 19:58:43
- Quelle security@mediatek.com
- CVE-Watchlists
- Unerledigt
In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01106496; Issue ID: MSV-4467.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mediatek ≫ Mt6813 Firmware Version-
Mediatek ≫ Mt6815 Firmware Version-
Mediatek ≫ Mt6835 Firmware Version-
Mediatek ≫ Mt6878 Firmware Version-
Mediatek ≫ Mt6897 Firmware Version-
Mediatek ≫ Mt6899 Firmware Version-
Mediatek ≫ Mt6986 Firmware Version-
Mediatek ≫ Mt6991 Firmware Version-
Mediatek ≫ Mt6993 Firmware Version-
Mediatek ≫ Mt8668 Firmware Version-
Mediatek ≫ Mt8676 Firmware Version-
Mediatek ≫ Mt8678 Firmware Version-
Mediatek ≫ Mt8755 Firmware Version-
Mediatek ≫ Mt8775 Firmware Version-
Mediatek ≫ Mt8792 Firmware Version-
Mediatek ≫ Mt8793 Firmware Version-
Mediatek ≫ Mt8863 Firmware Version-
Mediatek ≫ Mt8873 Firmware Version-
Mediatek ≫ Mt8883 Firmware Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.31% | 0.223 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-770 Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.
https://corp.mediatek.com/product-security-bulletin/April-2026