Out of Bounds Write Vulnerability in MediaTek Modem Products
CVE-2025-20704

8.8HIGH

Key Information:

Vendor: MediaTek
Status: Mt6813, Mt6835, Mt6835t, Mt6878, Mt6878m, Mt6897, Mt6899, Mt6991, Mt8676, Mt8678, Mt8792, Mt8863, Mt8873, Mt8883
Vendor: CVE Published:; 1 September 2025

What is CVE-2025-20704?

A vulnerability exists in MediaTek modems due to a lack of proper bounds checking, which could be exploited by attackers controlling a rogue base station. This flaw allows for the potential remote escalation of privileges without needing additional execution rights. User interaction is required for an attack to occur. Patching is essential for mitigation.

Affected Version(s)

MT6813, MT6835, MT6835T, MT6878, MT6878M, MT6897, MT6899, MT6991, MT8676, MT8678, MT8792, MT8863, MT8873, MT8883 Modem NR17, NR17R

References

https://corp.mediatek.com/product-security-bulletin/Septe...

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 1, 2025
Vulnerability Reserved
Nov 1, 2024

JSON