Out of Bounds Write Vulnerability in MediaTek GNSS Service
CVE-2025-20747

Currently unrated

Key Information:

Vendor: MediaTek
Status: Mt2718, Mt2737, Mt6835, Mt6878, Mt6886, Mt6897, Mt6899, Mt6982, Mt6985, Mt6986, Mt6986d, Mt6989, Mt6990, Mt6991, Mt8676, Mt8678, Mt8755, Mt8893
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-20747?

The MediaTek GNSS Service is susceptible to an out of bounds write vulnerability due to inadequate bounds checking. This flaw can allow malicious actors who have already obtained system privileges to escalate their privileges without user interaction. Effective remediation of this vulnerability is critical to maintaining the security posture of affected systems. A patch is available under Patch ID: ALPS10010443, as specified in Issue ID: MSV-3966.

Affected Version(s)

MT2718, MT2737, MT6835, MT6878, MT6886, MT6897, MT6899, MT6982, MT6985, MT6986, MT6986D, MT6989, MT6990, MT6991, MT8676, MT8678, MT8755, MT8893 Android 14.0, 15.0 / openWRT 21.02, 23.05 / Yocto 4.0 / RDK-B 24Q1 / Zephyr 3.7.0

References

https://corp.mediatek.com/product-security-bulletin/Novem...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
Nov 1, 2024

JSON