Memory Corruption Vulnerability in MediaTek Products
CVE-2025-20806

Currently unrated

Key Information:

Vendor

MediaTek
Status
Mt6899, Mt6991, Mt8793
Vendor
CVE Published:
6 January 2026

What is CVE-2025-20806?

The vulnerability in MediaTek's dpe arises from a potential memory corruption issue due to a use-after-free condition. This flaw can allow a malicious actor, who has already gained system privileges, to escalate their privileges further without needing user interaction to exploit the vulnerability. It is critical for users of affected products to apply the necessary patches to mitigate this risk and secure their systems.

Affected Version(s)

MT6899, MT6991, MT8793 Android 16.0

References

https://corp.mediatek.com/product-security-bulletin/Janua...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-20806 : Memory Corruption Vulnerability in MediaTek Products