CVE-2024-20137

HIGH

MediaTek MT6890, MT7622, MT7915, MT7916, MT7981, MT7986 - Remote Denial of Service via WLAN Driver Exception Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-20137. PoCs published by takistmr.

AI-analyzed exploit summary The repository contains a functional Python exploit using Scapy to craft and send malicious 802.11 authentication frames targeting MediaTek SOCs. It leverages an unregistered protocol number in SAE (WPA3) to force client deauthentication, demonstrating a DoS vulnerability.

Description

In wlan driver, there is a possible client disconnection due to improper handling of exceptional conditions. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00384543; Issue ID: MSV-1727.

Exploits (1)

nomisec WORKING POC 1 stars

by takistmr · poc

https://github.com/takistmr/CVE-2024-20137

View Code ZIP pw:eip

The repository contains a functional Python exploit using Scapy to craft and send malicious 802.11 authentication frames targeting MediaTek SOCs. It leverages an unregistered protocol number in SAE (WPA3) to force client deauthentication, demonstrating a DoS vulnerability.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: MediaTek SOCs (MT6890, MT7622, MT7915, MT7916, MT7981, MT7986) with vulnerable WLAN drivers

No auth needed

Prerequisites: Wireless interface in monitor mode · Scapy library · Target client and AP MAC addresses

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Various Sources

https://corp.mediatek.com/product-security-bulletin/December-2024

Scores

CVSS v3 7.5

EPSS 0.0122

EPSS Percentile 64.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-248

Status published

Products (1)

MediaTek, Inc./MT6890, MT7622, MT7915, MT7916, MT7981, MT7986 SDK release 7.4.0.1 (MT7915) and 7.6.7.2 (MT7916, MT798X) and before

Published Dec 02, 2024

Tracked Since Feb 18, 2026