CVE-2025-20708
published 2025-09-01CVE-2025-20708: In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to…
high8.8CVSS 3.1
AVAACLPRNUINSUCHIHAH
In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01123853; Issue ID: MSV-4131.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
GHSA
GHSA-7744-g43m-rwfw: In Modem, there is a possible out of bounds write due to an incorrect bounds check
ghsa_unreviewed·2025-09-02
CVE-2025-20708 [HIGH] CWE-787 GHSA-7744-g43m-rwfw: In Modem, there is a possible out of bounds write due to an incorrect bounds check
In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01123853; Issue ID: MSV-4131.
Android
CVE-2025-20708: Modem
vendor_android·2025-09-01·CVSS 8.8
CVE-2025-20708 [HIGH] CVE-2025-20708: Modem
Android Security Bulletin 2025-09-01
CVE: CVE-2025-20708
Severity: HIGH
Component: Modem
References: A-429908202
M-MOLY01123853
*
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-01
Published