CVE-2025-20704
published 2025-09-01CVE-2025-20704: In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a…
high8CVSS 3.1
AVAACLPRNUIRSUCHIHAH
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01516959; Issue ID: MSV-3502.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
GHSA
GHSA-ccx6-mqj7-mfjp: In Modem, there is a possible out of bounds write due to a missing bounds check
ghsa_unreviewed·2025-09-02
CVE-2025-20704 [HIGH] CWE-787 GHSA-ccx6-mqj7-mfjp: In Modem, there is a possible out of bounds write due to a missing bounds check
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01516959; Issue ID: MSV-3502.
Android
CVE-2025-20704: Modem
vendor_android·2025-09-01·CVSS 8.0
CVE-2025-20704 [HIGH] CVE-2025-20704: Modem
Android Security Bulletin 2025-09-01
CVE: CVE-2025-20704
Severity: HIGH
Component: Modem
References: A-429908205
M-MOLY01516959
*
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-01
Published