CVE-2024-20153

🗓️ 06 Jan 2025 03:18:01Reported by MediaTekType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 51 Views

Possible spoofed SSID can trick wlan client for remote information disclosure, no user interaction needed.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-20153	6 Jan 202504:02	–	circl
CNNVD	MediaTek Chipsets 安全漏洞	6 Jan 202500:00	–	cnnvd
Cvelist	CVE-2024-20153	6 Jan 202503:18	–	cvelist
NVD	CVE-2024-20153	6 Jan 202504:15	–	nvd
OSV	CVE-2024-20153	6 Jan 202504:15	–	osv
Positive Technologies	PT-2025-2282 · Wlan Sta · Wlan Sta	6 Jan 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-20153	23 May 202507:49	–	redhatcve
Vulnrichment	CVE-2024-20153	6 Jan 202503:18	–	vulnrichment

NVD

Vulners

Node

linuxfoundation yoctoMatch3.3

linuxfoundation yoctoMatch4.0

linuxfoundation yoctoMatch5.0

mediatek software_development_kitRange≤3.5

google androidMatch14.0

google androidMatch15.0

AND

mediatek mt2737Match-

mediatek mt6989Match-

mediatek mt6991Match-

mediatek mt7925Match-

mediatek mt8365Match-

mediatek mt8518sMatch-

mediatek mt8532Match-

mediatek mt8666Match-

mediatek mt8667Match-

mediatek mt8673Match-

mediatek mt8676Match-

mediatek mt8678Match-

mediatek mt8755Match-

mediatek mt8766Match-

mediatek mt8768Match-

mediatek mt8775Match-

mediatek mt8781Match-

mediatek mt8786Match-

mediatek mt8788Match-

mediatek mt8796Match-

mediatek mt8798Match-

mediatek mt8893Match-

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT2737, MT6989, MT6991, MT7925, MT8365, MT8518S, MT8532, MT8666, MT8667, MT8673, MT8676, MT8678, MT8755, MT8766, MT8768, MT8775, MT8781, MT8786, MT8788, MT8796, MT8798, MT8893",
    "versions": [
      {
        "version": "Android 14.0, 15.0 / SDK release 3.5 and before / Yocto 3.3, 4.0, 5.0",
        "status": "affected"
      }
    ]
  }
]

Source	Link
corp	www.corp.mediatek.com/product-security-bulletin/January-2025

12 Jan 2026 16:20Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.5

EPSS0.00676

SSVC

CWE-304