Heap Buffer Overflow Vulnerability in MediaTek WLAN Access Point Driver
CVE-2026-20452

Currently unrated

Key Information:

Vendor: MediaTek
Status: Mediatek Chipset
Vendor: CVE Published:; 1 June 2026

What is CVE-2026-20452?

The MediaTek WLAN Access Point driver is susceptible to a heap buffer overflow vulnerability that may result in memory corruption. This flaw could allow an attacker to execute code remotely with user execution privileges, posing significant security risks. User intervention is not required to exploit this vulnerability, making it a serious concern for users operating affected versions of MediaTek WLAN drivers. A patch (ID: WCNCR00480138) has been released to address this issue. For more details, refer to the MediaTek product security bulletin.

Affected Version(s)

MediaTek chipset MT6890

MediaTek chipset MT7615

MediaTek chipset MT7915

References

https://corp.mediatek.com/product-security-bulletin/June-...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Nov 3, 2025

CVE-2026-20452 Data

JSON