Mediatek

Mt8678

48 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-20756

  • EPSS 0.19%
  • Veröffentlicht 02.12.2025 02:34:16
  • Zuletzt bearbeitet 03.12.2025 21:40:10

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction i...

6.7

CVE-2025-20747

  • EPSS 0.01%
  • Veröffentlicht 04.11.2025 06:20:19
  • Zuletzt bearbeitet 05.11.2025 17:11:25

In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitatio...

6.7

CVE-2025-20746

  • EPSS 0.01%
  • Veröffentlicht 04.11.2025 06:20:17
  • Zuletzt bearbeitet 05.11.2025 17:11:34

In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitatio...

4.2

CVE-2025-20745

  • EPSS 0.01%
  • Veröffentlicht 04.11.2025 06:20:03
  • Zuletzt bearbeitet 05.11.2025 17:11:47

In apusys, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10...

6.7

CVE-2025-20730

  • EPSS 0.01%
  • Veröffentlicht 04.11.2025 06:19:47
  • Zuletzt bearbeitet 05.11.2025 17:13:55

In preloader, there is a possible escalation of privilege due to an insecure default value. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitati...

7.8

CVE-2025-20723

  • EPSS 0.01%
  • Veröffentlicht 14.10.2025 09:11:50
  • Zuletzt bearbeitet 15.10.2025 18:41:00

In gnss driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation...

5.5

CVE-2025-20722

  • EPSS 0.01%
  • Veröffentlicht 14.10.2025 09:11:48
  • Zuletzt bearbeitet 15.10.2025 18:45:07

In gnss driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ...

6.7

CVE-2025-20707

  • EPSS 0.01%
  • Veröffentlicht 01.09.2025 05:12:24
  • Zuletzt bearbeitet 03.09.2025 16:06:46

In geniezone, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALP...

7.8

CVE-2025-20706

  • EPSS 0.01%
  • Veröffentlicht 01.09.2025 05:12:22
  • Zuletzt bearbeitet 03.09.2025 16:06:51

In mbrain, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09...

8.8

CVE-2025-20704

  • EPSS 0.25%
  • Veröffentlicht 01.09.2025 05:12:19
  • Zuletzt bearbeitet 03.09.2025 16:07:22

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges need...