Out of Bounds Write Vulnerability in MediaTek Wlan AP Driver
CVE-2025-20716

7.8HIGH

Key Information:

Vendor: MediaTek
Status: Mt6890, Mt7615, Mt7622, Mt7663, Mt7915, Mt7916, Mt7981, Mt7986
Vendor: CVE Published:; 14 October 2025

What is CVE-2025-20716?

The wlan AP driver from MediaTek has a vulnerability that allows for an out of bounds write due to a flaw in the bounds checking process. This vulnerability could enable a local attacker, who has already gained system privileges, to escalate their privileges further. Notably, no user interaction is required for exploitation, increasing the risk of potential attacks. MediaTek has provided a patch to address this issue under Patch ID: WCNCR00421149.

Affected Version(s)

MT6890, MT7615, MT7622, MT7663, MT7915, MT7916, MT7981, MT7986 SDK release 7.6.7.2 and before / openWRT 19.07, 21.02 (MT6890)

References

https://corp.mediatek.com/product-security-bulletin/Octob...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2025
Vulnerability Reserved
Nov 1, 2024

JSON