3 matches found
CVE-2025-20654
CVE-2025-20654 affects the MediaTek WLAN service, where an incorrect bounds check enables an out-of-bounds write that could lead to remote code execution without user interaction. CVSS v3.1 base score 9.8 (CRITICAL; AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Patch WCNCR00406897 addresses this issue (M...
CVE-2025-20663
The CVE-2025-20663 entry affects the WLAN AP driver in MediaTek chipsets, with an information disclosure caused by an uncaught exception. Exploitation could occur remotely from nearby networks without user interaction and without additional execution privileges. The impact is confined to confiden...
CVE-2025-20664
CVE-2025-20664 affects the wlan AP driver (MediaTek-based) with an information disclosure due to an uncaught exception. The flaw could enable remote (proximal/adjacent) data leakage without extra execution privileges or user interaction. Impact is limited to confidentiality (no integrity/availabi...