Denial of Service Vulnerability in Modem by MediaTek
CVE-2026-20403
Key Information:
- Vendor
MediaTek
- Vendor
- CVE Published:
- 2 February 2026
What is CVE-2026-20403?
A critical vulnerability has been identified in MediaTek's Modem product line, which may allow an attacker to cause a system crash through a missing bounds check. This security flaw can be exploited by connecting to a rogue base station controlled by the attacker, and does not require any user interaction for exploitation. It is essential for users of the affected devices โ N15, NR16, NR17, and NR17R โ to apply the recommended patches (Patch ID: MOLY01689254 for N15 and NR16; MOLY01689259 for NR17 and NR17R) to secure their systems. Detailed information can be found in the MediaTek product security bulletin.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
MT2735, MT2737, MT6813, MT6815, MT6833, MT6835, MT6853, MT6855, MT6873, MT6875, MT6877, MT6878, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6896, MT6897, MT6899, MT6980, MT6983, MT6985, MT6989, MT6990, MT6991, MT6993, MT8673, MT8675, MT8676, MT8771, MT8791, MT8791T, MT8795T, MT8797, MT8798, MT8893 Modem NR15, NR16, NR17, NR17R
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved