In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01123853; Issue ID: MSV-4131.
Metrics
Affected Vendors & Products
References
History
Tue, 02 Sep 2025 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Mediatek
Mediatek modem |
|
Vendors & Products |
Mediatek
Mediatek modem |
Tue, 02 Sep 2025 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
Mon, 01 Sep 2025 05:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01123853; Issue ID: MSV-4131. | |
Weaknesses | CWE-787 | |
References |
|

Status: PUBLISHED
Assigner: MediaTek
Published:
Updated: 2025-09-02T13:10:37.933Z
Reserved: 2024-11-01T01:21:50.383Z
Link: CVE-2025-20708

Updated: 2025-09-02T13:10:33.193Z

Status : Awaiting Analysis
Published: 2025-09-01T06:15:35.287
Modified: 2025-09-02T15:55:25.420
Link: CVE-2025-20708

No data.

Updated: 2025-09-02T15:23:13Z