mediatek

253 tracked vulnerabilities.

CVE-2025-20672 CRITICAL
MediaTek MT7902/MT7921/MT7922/MT7925/MT7927 Firmware < 3.6 - Heap-based Buffer Overflow in Bluetooth Driver
Jun 02, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-20670 MEDIUM
MediaTek NR16 NR17 NR17R - Remote Information Disclosure via Improper Certificate Validation
May 05, 2025
CVSS 5.7
EPSS 0.00
CVE-2025-20667 HIGH
MediaTek LR12A, LR13, NR15, NR16, NR17, NR17R - Remote Information Disclosure via Rogue Base Station
May 05, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-20666 HIGH
MediaTek NR15 - Remote Denial of Service via Rogue Base Station Connection
May 05, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-20664 HIGH
MediaTek Software Development Kit < 7.4.0.1 - Information Disclosure via Uncaught Exception in WLAN AP Driver
Apr 07, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-20663 HIGH
MediaTek Software Development Kit < 7.4.0.1 - Remote Information Disclosure via Uncaught Exception in WLAN AP Driver
Apr 07, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-20662 MEDIUM
Android - Out-of-bounds Read in PlayReady TA
Apr 07, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-20661 MEDIUM
Google Android - Out-of-bounds Read in PlayReady TA
Apr 07, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-20659 MEDIUM
Mediatek Mt2735 Firmware - Out-of-Bounds Read
Apr 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-20658 MEDIUM
Android - Local Privilege Escalation via DA Logic Error
Apr 07, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-20656 MEDIUM
Yocto - Out-of-bounds Write in DA Component
Apr 07, 2025
CVSS 6.8
EPSS 0.00
CVE-2025-20655 MEDIUM
Android - Out-of-bounds Read in Keymaster
Apr 07, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-20654 CRITICAL
MediaTek Software Development Kit < 7.4.0.1 - Out-of-bounds Write
Apr 07, 2025
CVSS 9.8
EPSS 0.01
CVE-2025-20649 MEDIUM
MediaTek Software Development Kit < 3.6 - Unauthenticated Information Disclosure via Bluetooth Stack
Mar 03, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-20647 MEDIUM
MediaTek NR12A NR13 NR15 NR16 - Remote Denial of Service via Rogue Base Station
Mar 03, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-20646 CRITICAL
MediaTek Software Development Kit < 7.6.7.2 - Out-of-bounds Write in WLAN AP Firmware
Mar 03, 2025
CVSS 9.8
EPSS 0.02
CVE-2025-20644 MEDIUM
MediaTek NR15 and NR16 - Remote Denial of Service via Rogue Base Station
Mar 03, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-20637 HIGH
MediaTek Software Development Kit < 7.6.7.0 - Remote Denial of Service via Uncaught Exception
Feb 03, 2025
CVSS 7.5
EPSS 0.05
CVE-2025-20634 CRITICAL
MediaTek NR16 NR17 NR17R - Out-of-bounds Write
Feb 03, 2025
CVSS 9.8
EPSS 0.07
CVE-2025-20633 HIGH
MediaTek Software Development Kit < 7.4.0.1 - Out-of-bounds Write in WLAN AP Driver
Feb 03, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-20632 HIGH
MediaTek Software Development Kit < 7.6.7.2 - Out-of-bounds Write in WLAN AP Driver
Feb 03, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-20631 HIGH
MediaTek Software Development Kit < 7.6.7.2 - Out-of-bounds Write in WLAN AP Driver
Feb 03, 2025
CVSS 7.8
EPSS 0.00
CVE-2024-20147 MEDIUM
Yocto - Reachable Assertion Denial of Service via Bluetooth FW Exception Handling
Feb 03, 2025
CVSS 5.3
EPSS 0.02
CVE-2024-20154 HIGH
MediaTek Modem - Rogue Base Station Remote Code Execution
Jan 06, 2025
CVSS 8.8
EPSS 0.27
CVE-2024-20153 HIGH
Yocto - Remote Information Disclosure via Spoofed SSID
Jan 06, 2025
CVSS 7.5
EPSS 0.01
Products
software_development_kit 71 nr15 65 nr16 57 nr17 48 mt7615_firmware 37 mt7622_firmware 37 mt7613_firmware 36 mt7628_firmware 36 mt7629_firmware 36 mt7915_firmware 36 iot_yocto 24 mt7603e_firmware 20 nr17r 20 mt7612_firmware 18 mt7620_firmware 18 lr12a 17 mt7610_firmware 17 mt7603_firmware 16 mt7916_firmware 16 mt7986_firmware 16 lr13 15 mt6899_firmware 9 mt6991_firmware 9 nbiot_sdk 9 mt6989_firmware 8 mt7981_firmware 8 mt8791t_firmware 8 mt8793_firmware 8 mt8981_firmware 8 mt6877_firmware 7
Quick Filters
Critical CVEs With Exploits In CISA KEV