cbcvebase.

Mediatek Software Development Kit vulnerabilities

71 known vulnerabilities affecting mediatek/software_development_kit.

Total CVEs
71
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL13HIGH30MEDIUM28

Vulnerabilities

Page 4 of 4
CVE-2025-20689P4MEDIUMCVSS 5.5≤ 7.6.7.22025-07-08
CVE-2025-20689 [MEDIUM] CWE-125 CVE-2025-20689: In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This cou In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418048; Issue ID: MSV-3479.
nvd
CVE-2025-20691P4MEDIUMCVSS 5.5≤ 7.6.7.22025-07-08
CVE-2025-20691 [MEDIUM] CWE-125 CVE-2025-20691: In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This cou In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418039; Issue ID: MSV-3477.
nvd
CVE-2025-20724P4MEDIUMCVSS 5.5≤ 7.6.7.22025-10-14
CVE-2025-20724 [MEDIUM] CWE-125 CVE-2025-20724: In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This cou In wlan AP driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418894; Issue ID: MSV-3475.
nvd
CVE-2025-20732P4MEDIUMCVSS 5.3≤ 7.6.7.22025-11-04
CVE-2025-20732 [MEDIUM] CWE-121 CVE-2025-20732: In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This co In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege (when OceReducedNeighborReport is disabled). User interaction is not needed for exploitation. Patch ID: WCNCR00441510; Issue ID: MSV-4139.
nvd
CVE-2025-20731P4MEDIUMCVSS 5.3≤ 7.6.7.22025-11-04
CVE-2025-20731 [MEDIUM] CWE-122 CVE-2025-20731: In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This co In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege (when OceReducedNeighborReport is disabled). User interaction is not needed for exploitation. Patch ID: WCNCR00441511; Issue ID: MSV-4140.
nvd
CVE-2025-20734P4MEDIUMCVSS 5.3≤ 7.6.7.22025-11-04
CVE-2025-20734 [MEDIUM] CWE-122 CVE-2025-20734: In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This co In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00441507; Issue ID: MSV-4112.
nvd
CVE-2023-32831P4MEDIUMCVSS 5.5≤ 7.6.7.12024-01-02
CVE-2023-32831 [MEDIUM] CWE-330 CVE-2023-32831: In wlan driver, there is a possible PIN crack due to use of insufficiently random values. This could In wlan driver, there is a possible PIN crack due to use of insufficiently random values. This could lead to local information disclosure with no execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00325055; Issue ID: MSV-868.
nvd
CVE-2025-20740P4MEDIUMCVSS 4.7≤ 3.72025-11-04
CVE-2025-20740 [MEDIUM] CWE-367 CVE-2025-20740: In wlan STA driver, there is a possible out of bounds read due to a race condition. This could lead In wlan STA driver, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00435337; Issue ID: MSV-4036.
nvd
CVE-2024-20071P4MEDIUMCVSS 4.4≤ 5.0.5.02024-06-03
CVE-2024-20071 [MEDIUM] CWE-125 CVE-2024-20071: In wlan driver, there is a possible out of bounds read due to improper input validation. This could In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00364733; Issue ID: MSV-1331.
nvd
CVE-2025-20729P4MEDIUMCVSS 4.2≤ 7.6.7.22025-11-04
CVE-2025-20729 [MEDIUM] CWE-122 CVE-2025-20729: In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This co In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00441512; Issue ID: MSV-4153.
nvd
CVE-2024-20152P4MEDIUMCVSS 4.4≤ 2.42025-01-06
CVE-2024-20152 [MEDIUM] CWE-617 CVE-2024-20152: In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This In wlan STA driver, there is a possible reachable assertion due to improper exception handling. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00389047 / ALPS09136505; Issue ID: MSV-1798.
nvd
Mediatek Software Development Kit vulnerabilities | cvebase