Out of Bounds Read Vulnerability in MediaTek WLAN Driver
CVE-2025-20740

4.7MEDIUM

Key Information:

Vendor: MediaTek
Status: Mt7902, Mt7920, Mt7921, Mt7922, Mt7925, Mt7927
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-20740?

A vulnerability exists in the WLAN STA driver that allows for a potential out of bounds read due to a race condition. This situation can lead to a local information disclosure risk, requiring user execution privileges for exploitation. Notably, user interaction is not necessary to exploit this vulnerability. To address this issue, a patch has been issued under ID WCNCR00435337, associated with Issue ID MSV-4036. For more comprehensive details, refer to the MediaTek product security bulletin.

Affected Version(s)

MT7902, MT7920, MT7921, MT7922, MT7925, MT7927 NB SDK release 3.7 and before

References

https://corp.mediatek.com/product-security-bulletin/Novem...

CVSS V3.1

Score:

4.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Nov 1, 2024

JSON