Remote Denial of Service in Mediatek Modem due to Bounds Check Flaw
CVE-2025-20754
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 2 December 2025
What is CVE-2025-20754?
In Mediatek Modem, a vulnerability exists due to an improper bounds check, which may lead to a system crash. This condition can be exploited if a user equipment (UE) connects to a rogue base station controlled by an attacker. Notably, this vulnerability does not require any additional execution privileges or user interaction to be exploited, making it a significant risk for device users.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
MT2735, MT2737, MT6813, MT6833, MT6833P, MT6835, MT6835T, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6878, MT6878M, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6895TT, MT6896, MT6897, MT6899, MT6980, MT6980D, MT6983, MT6983T, MT6985, MT6985T, MT6989, MT6989T, MT6990, MT6991, MT8673, MT8675, MT8676, MT8678, MT8755, MT8771, MT8791, MT8791T, MT8792, MT8793, MT8795T, MT8797, MT8798, MT8863, MT8873, MT8883, MT8893 Modem NR15, NR16, NR17, NR17R
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved