Remote Denial of Service Vulnerability in MediaTek Bluetooth Firmware
CVE-2024-20147

5.3MEDIUM

Key Information:

Vendor
MediaTek
Status
Mt2737, Mt3603, Mt6835, Mt6878, Mt6886, Mt6897, Mt6985, Mt6989, Mt6990, Mt7902, Mt7920, Mt7921, Mt7922, Mt7925, Mt7927, Mt8195, Mt8370, Mt8390, Mt8395, Mt8518s, Mt8532, Mt8678
Vendor
CVE Published:
3 February 2025

Summary

A vulnerability in MediaTek's Bluetooth firmware allows for a reachable assertion due to improper exception handling. This issue can lead to a remote denial of service, where an attacker can exploit the vulnerability without requiring user interaction or additional execution privileges. The affected chipsets, including MT79XX, MT2737, MT3603, MT6XXX, and MT8XXX, may be susceptible unless a patch is applied. The patches are identified with Patch IDs WCNCR00389046 for MT79XX and ALPS09136501 for the other mentioned chipsets. It is crucial for users of these chipsets to implement the recommended patches to mitigate potential risks.

Affected Version(s)

MT2737, MT3603, MT6835, MT6878, MT6886, MT6897, MT6985, MT6989, MT6990, MT7902, MT7920, MT7921, MT7922, MT7925, MT7927, MT8195, MT8370, MT8390, MT8395, MT8518S, MT8532, MT8678 Android 13.0, 14.0, 15.0 / SDK release 2.5, 3.5 and before / openWRT 23.05 / Yocto 3.3, 4.0, 5.0

References

https://corp.mediatek.com/product-security-bulletin/Febru...

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.