Memory Corruption Vulnerability in MediaTek DPE Product
CVE-2025-20803

Currently unrated

Key Information:

Vendor

MediaTek
Status
Mt6899, Mt6991, Mt8793
Vendor
CVE Published:
6 January 2026

What is CVE-2025-20803?

The memory corruption vulnerability in MediaTek's DPE occurs due to an integer overflow, potentially allowing local privilege escalation. Exploitation requires that a malicious actor has already gained system privileges, and user interaction is necessary to trigger the exploitation. This vulnerability highlights the need for prompt updates and patches to ensure system integrity.

Affected Version(s)

MT6899, MT6991, MT8793 Android 16.0

References

https://corp.mediatek.com/product-security-bulletin/Janua...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-20803 : Memory Corruption Vulnerability in MediaTek DPE Product