57 matches found
CVE-2022-21744
CVE-2022-21744 concerns the Modem 2G RR from MediaTek, where a missing bounds check enables an out-of-bounds write in PNCD decoding that can cause remote code execution. Exploitation requires no user interaction and is possible over the network; the issue is cited with Patch ID MOLY00810064 and I...
CVE-2022-20083
CVE-2022-20083 affects the Modem 2G/3G CC. The issue is an out-of-bounds write caused by a missing bounds check during decoding of a combined FACILITY, enabling remote code execution with network access and no user interaction. Public references in the provided documents point to a patch ID MOLY0...
CVE-2025-20634
CVE-2025-20634 concerns MediaTek Modem firmware (notably MT8863 NR16/NR17 and related MT2737-based devices) where a missing bounds check enables an out-of-bounds write. The issue allows remote code execution over the network without user interaction, if the device connects to a rogue base station...
CVE-2023-32890
CVE-2023-32890 affects MediaTek Modem EMM. The issue is a crash caused by improper input validation, enabling remote denial of service with no user interaction. Exploitation is possible over the network (per CVSS) and does not require privileges. A patch identified as MOLY01183647 (MSV-963) is pr...
CVE-2024-20039
The CVE-2024-20039 issue concerns MediaTek modem protocol components with a missing bounds check that enables an out-of-bounds write. This can lead to remote code execution with no privileges or user interaction required. Concrete details across connected documents identify the affected area as t...
CVE-2025-20644
CVE-2025-20644 affects MediaTek Modem; memory corruption due to improper error handling could enable remote denial of service when a UE connects to a rogue base station. No user interaction required; exploitation vector is remote over the air with adjacent access. A patch is available: MOLY015256...
CVE-2023-20819
CVE-2023-20819 affects MediaTek’s CDMA PPP protocol component, where a missing bounds check can enable an out-of-bounds write and remote escalation of privilege with no user interaction. A patch is identified as MOLY01068234 (Issue ALPS08010003); exploitation status is not provided in the availab...
CVE-2024-20082
CVE-2024-20082 affects MediaTek’s Modem component, where a missing bounds check can cause memory corruption, enabling remote code execution with no privileges and no user interaction. Impact is described as High/Total in multiple sources; exploitation status is not detailed in the provided docume...
CVE-2024-20066
The CVE-2024-20066 issue affects MediaTek Modem, caused by an incorrect bounds check leading to a possible out-of-bounds write. This enables remote denial of service with no privileges required and no user interaction needed. Remediation is available via patch MOLY01267281 (MSV-1477).
CVE-2023-32841
The CVE-2023-32841 entry affects MediaTek’s 5G Modem. The vulnerability arises from improper error handling in the 5G Modem, which can cause a system crash and remote denial of service when processing malformed RRC messages. Exploitation requires no user interaction and does not need additional e...
CVE-2023-20702
CVE-2023-20702 affects MediaTek 5G NRLC modules. The vulnerability is an invalid memory access in the 5G NRLC processing path caused by insufficient error handling when handling a 1-byte RLC SDU, which could lead to a remote denial of service without user interaction. The issue is discussed in mu...
CVE-2024-20067
CVE-2024-20067 affects the modem component (MediaTek/MOLY stack). The advisory describes an possible out-of-bounds write caused by improper input invalidation in the modem, which could enable a remote denial of service with no required privileges and without user interaction. The issue is documen...
CVE-2024-20068
CVE-2024-20068 affects the Modem component described in multiple sources as an input validation issue that can crash the system and cause remote denial of service without extra privileges or user interaction. Public documents consistently identify Modem as the affected area and note the vulnerabi...
CVE-2023-32874
CVE-2023-32874 is a MediaTek Modem IMS Stack vulnerability. The issue is a possible out-of-bounds write caused by a missing bounds check in the Modem IMS Stack, which the sources state could lead to remote code execution with no additional privileges and no user interaction required. The vulnerab...
CVE-2023-32842
CVE-2023-32842 affects the MediaTek 5G Modem. The vulnerability arises from improper error handling in the 5G Modem’s RRC message processing, leading to a system crash and remote denial of service without requiring user interaction or additional privileges. A patch was issued: MOLY01130256 (MSV-8...
CVE-2023-32843
CVE-2023-32843 affects the 5G Modem: a vulnerability due to improper error handling in processing RRC messages that can cause a system crash and remote denial of service. Exploitation requires no user interaction and no extra privileges. The issue is documented with a patch MOLY01130204 (MSV-849)...
CVE-2024-20150
CVE-2024-20150 affects the Modem component in MediaTek chipsets. A logic error in the Modem can cause a system crash, enabling remote denial of service without privileges and without user interaction. The CVSS v3.1 base score is 7.5 (Network, Privileges Required: None, User Interaction: None, Ava...
CVE-2025-20670
CVE-2025-20670 concerns a vulnerability in a Modem where improper certificate validation enables a permission bypass, potentially causing remote information disclosure if a UE connects to a rogue base station controlled by an attacker. Exploitation requires user interaction and the attacker would...
CVE-2023-32891
CVE-2023-32891 relates to an out-of-bounds write in the bluetooth service caused by improper input validation. Affected component is described as the Bluetooth service (no specific vendor/version in provided text beyond MediaTek-linked sources). The underlying root cause is input validation weakn...
CVE-2024-20131
CVE-2024-20131 affects the Modem component in MediaTek chipsets. The root cause is an incorrect bounds check that can enable a local escalation of privilege, requiring local access with no user interaction. The vulnerability is described as potentially enabling System execution privileges with hi...
CVE-2024-20149
CVE-2024-20149 affects the Modem component, with an input validation flaw that can cause a remote denial of service (no privileges, no user interaction needed). The vulnerability is associated with a network-based attack vector and a high impact on availability (CVSS 3.1 base score 7.5). Affected...
CVE-2024-20151
The CVE-2024-20151 entry concerns MediaTek’s Modem component where an incorrect bounds check can cause an out-of-bounds write. This vulnerability could enable local escalation of privilege if an attacker already has System privileges, with no user interaction required. A patch is identified as MO...
CVE-2025-20667
CVE-2025-20667 concerns a remote information disclosure in the Modem due to incorrect error handling. The vulnerability allows information disclosure without user interaction if a user equipment (UE) connects to a rogue base station controlled by an attacker, with no additional execution privileg...
CVE-2025-20647
The CVE-2025-20647 entry concerns MediaTek Modem. The documented vulnerability is a missing bounds check that can trigger a system crash, enabling remote denial of service for a UE connected to a rogue base station, with no user interaction required. Affected component is the Modem (MediaTek) and...
CVE-2022-26446
CVE-2022-26446 affects the Modem 4G RRC. The root cause is improper input validation in handling certain SIB12 (CMAS message) input, causing a system crash and remote denial of service. Exploitation is described as possible without additional execution privileges and without user interaction. The...
CVE-2023-32840
Summary: CVE-2023-32840 affects the modem CCCI component. The vulnerability is an out-of-bounds write caused by a missing bounds check, leading to local privilege escalation with System execution privileges required. Exploitation may require user interaction. Patch reference exists (MOLY01138425;...
CVE-2023-32888
Affected software: Modem IMS Call UA. Vulnerability: out-of-bounds write caused by a missing bounds check in the IMS Call UA module. Impact: remote denial of service with no privileges and no user interaction required. Exploitation: no explicit exploit details provided in the documents. Remediati...
CVE-2023-32886
Summary (CVE-2023-32886) In the Modem IMS SMS UA component, there is an out-of-bounds write caused by a missing bounds check. This can lead to remote denial of service with no extra execution privileges and no user interaction required. Public references consistently describe the issue as impacti...
CVE-2023-32887
In Modem IMS Stack, a missing bounds check can cause a system crash leading to remote denial of service with no authentication or user interaction required. Affected: Modem IMS Stack (vendor/product not explicitly named in the document set). Root cause: out-of-bounds condition in the modular stac...
CVE-2025-20678
The CVE-2025-20678 entry affects MediaTek IMS service. The vulnerability arises from incorrect error handling in the ims service, enabling remote denial of service when a UE connects to a rogue base station; exploitation requires no user interaction and no privileges. Reported impact is a system ...
CVE-2023-32845
CVE-2023-32845 concerns the 5G Modem and a vulnerability due to improper error handling that can cause a remote system crash leading to a denial of service when the modem processes malformed RRC messages. The issue does not require user interaction and can be exploited remotely (attack vector: ne...
CVE-2024-20133
CVE-2024-20133 describes a local privilege escalation in the Modem due to an incorrect bounds check. Exploitation requires SYSTEM privileges and does not require user interaction. A patched release is identified by Patch ID MOLY01395886 (MSV-1871). Affected scope is not fully enumerated in the pr...
CVE-2023-32844
The CVE-2023-32844 entry affects the 5G Modem, where improper error handling can cause a system crash leading to remote denial of service when processing malformed RRC messages. Exploitation requires no privileges and no user interaction. The vulnerability is mitigated by the patch MOLY01128524 (...
CVE-2023-32846
The CVE-2023-32846 issue affects the MediaTek 5G Modem and is caused by improper error handling in the RRC message processing. This can crash the system and enable remote denial of service without extra privileges or user interaction. A patch is indicated: MOLY01128524 (MSV-861). Affected behavio...
CVE-2024-20132
The CVE-2024-20132 vulnerability affects the Modem and is caused by an out-of-bounds write stemming from a missing/incorrect bounds check, enabling local privilege escalation with no user interaction required. Reported impact is high for confidentiality, integrity, and availability; exploitation ...
CVE-2024-20070
CVE-2024-20070 affects the modem component. The root cause is the use of a risky cryptographic algorithm during the connection establishment negotiation, which may cause information disclosure to an attacker who can observe weak encryption. The issue does not require additional privileges and doe...
CVE-2026-20422
CVE-2026-20422 : In Modem, improper input validation can cause a remote denial of service when a UE connects to a rogue base station. Exploitation requires no user interaction and can occur with adjacent network access. The issue is associated with Patch MOLY00827332 and Issue MSV-5919. MITRE/ATT...
CVE-2025-20708
The CVE-2025-20708 entry concerns MediaTek’s Modem (MOLY) with an out-of-bounds write caused by an incorrect bounds check. According to the sources, this could enable remote escalation of privilege when a user equipment (UE) connects to a rogue base station, with no extra execution privileges or ...
CVE-2025-20759
In MediaTek Modem CVE-2025-20759, the issue is a missing bounds check causing an out-of-bounds read in the Modem component. This can enable remote denial of service when a user equipment (UE) connects to a rogue base station without requiring user interaction and with no additional privileges. Pu...
CVE-2025-20761
CVE-2025-20761 affects the Modem component, where a fault in error handling can cause a system crash leading to remote denial of service if a UE connects to a rogue base station. Exploitation requires no user interaction and does not need additional privileges; the issue is addressed via patch MO...
CVE-2025-20703
Summary: CVE-2025-20703 affects the Modem component, where an incorrect bounds check enables an out-of-bounds read. This can cause a remote denial of service if a UA connects to a rogue base station, with no user interaction or privileges required. Impact (as stated): remote DoS; availability imp...
CVE-2025-20794
CVE-2025-20794 affects Modem with a vulnerability in input validation that can cause a system crash, leading to remote denial of service when a UE connects to a rogue base station. Exploitation is possible without user interaction and requires adjacent access; no privileges or interaction needed....
CVE-2026-20434
CVE-2026-20434 affects the Modem component, where an out-of-bounds write due to a missing bounds check could allow remote escalation of privileges if a UE connects to a rogue base station. Exploitation requires no extra execution privileges but does require user interaction. Public disclosures in...
CVE-2026-20405
CVE-2026-20405 affects the Modem component where a missing bounds check can trigger a remote denial of service when a UE connects to a rogue base station controlled by an attacker. Exploitation requires no user interaction and no additional privileges. Reported patch: MOLY01688495 (MSV-4818). Rel...
CVE-2025-20727
CVE-2025-20727 affects MediaTek MoLY modem software, describing a heap-buffer overflow that enables out-of-bounds writes and remote escalation of privilege when a UE connects to a rogue base station. The vulnerability arises from an out-of-bounds write in the Modem component, with no user interac...
CVE-2025-20725
CVE-2025-20725 affects MediaTek IMS service with an out-of-bounds write due to a missing bounds check. The issue enables remote escalation of privilege when a user equipment connects to a rogue base station; exploitation does not require user interaction. Patch MOLY01671924 (MSV-4620) is referenc...
CVE-2026-20404
CVE-2026-20404 is a Modem vulnerability where improper input validation can cause a system crash, enabling remote denial of service when a UE connects to a rogue base station. No user interaction is required; exploitability is adjacent vector with low attack complexity and no privileges. A patch ...
CVE-2025-20758
CVE-2025-20758 : In MediaTek Modem components, an uncaught exception can cause a system crash, enabling remote DoS when a UE connects to a rogue base station. Exploitation requires no user interaction and can occur over the network. The issue is documented in multiple sources (e.g., Red Hat RH:CV...
CVE-2025-20752
CVE-2025-20752 concerns MediaTek MediaTek Modem vulnerability: a missing bounds check can cause a system crash and remote denial of service when a UE connects to a rogue base station. No user interaction required; exploit assumed over the network with low privileges. Patch MOLY01270690 (MSV-4301)...
CVE-2026-20403
CVE-2026-20403 concerns the Modem component, where a missing bounds check can cause a system crash leading to remote denial of service. Exploitation is possible if a user equipment (UE) connects to a rogue base station controlled by an attacker, with no additional execution privileges and no user...