Memory Corruption Vulnerability in Apusys Affects Mediatek Products
CVE-2025-20745
Currently unrated
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 4 November 2025
What is CVE-2025-20745?
A vulnerability exists in Apusys due to a use-after-free scenario, potentially allowing a malicious actor with System privileges to escalate their access. Exploitation of this vulnerability does not require user interaction, which poses a significant risk. Affected users should implement the patch ID ALPS10095441 to mitigate this security concern.
Affected Version(s)
MT2718, MT6989, MT6991, MT8370, MT8390, MT8395, MT8676, MT8678, MT87920 Android 13.0, 14.0, 15.0