Dismissed
(no matching packages found)
Permalink
CVE-2026-20461
5.3 MEDIUM
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Adjacent (A)
- Attack Complexity (AC): High (H)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Adjacent (A)
- Modified Attack Complexity (MAC): High (H)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
Activity log
- Created & dismissed (no matching packages found) suggestion
In Modem, there is a possible out of bounds write …
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01267281 / MOLY01318201; Issue ID: MSV-6486.
Affected products
MediaTek chipset
- ==MT8673
- ==MT8793
- ==MT8893
- ==MT6895
- ==MT8873
- ==MT6878
- ==MT6993
- ==MT6858
- ==MT8676
- ==MT8796
- ==MT6989
- ==MT6985
- ==MT6813
- ==MT6988
- ==MT8775
- ==MT8883
- ==MT6983
- ==MT6899
- ==MT8795T
- ==MT2737
- ==MT6879
- ==MT6980
- ==MT6990
- ==MT8798
- ==MT6886
- ==MT6897
- ==MT6991
- ==MT8678
- ==MT8792
- ==MT6896
- ==MT8755
- ==MT6835
- ==MT8863