Logic Error Vulnerability in MediaTek Modem Leading to Remote Denial of Service
CVE-2026-20431

Currently unrated

Key Information:

Vendor: MediaTek
Status: Mediatek Chipset
Vendor: CVE Published:; 7 April 2026

What is CVE-2026-20431?

A logic error in the MediaTek Modem can result in a system crash, enabling a potential remote denial of service attack when a user equipment (UE) connects to a compromised base station. This vulnerability can be exploited without the need for additional execution privileges or user interaction, making it a significant security concern. A patch addressing this issue has been released as part of MediaTek's product security bulletin.

Affected Version(s)

MediaTek chipset MT6813

MediaTek chipset MT6815

MediaTek chipset MT6835

References

https://corp.mediatek.com/product-security-bulletin/April...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 7, 2026
Vulnerability Reserved
Nov 3, 2025

CVE-2026-20431 Data

JSON