CVE-2025-20735
Essential information
- Published
- 04/11/2025 07:15
- Modified
- 05/11/2025 17:13
- Author
- —
- Creator
- —
- CVSS
- 7.8 HIGH (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- LOCAL
- Attack complexity
- LOW
- Privileges required
- LOW
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- HIGH
- Integrity impact
- HIGH
- Availability impact
- HIGH
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00435349; Issue ID: MSV-4051.
NVD status
- Status
- Analyzed — CVE has had analysis completed and all data associations made.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| mediatek / software development kit | cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:* |
| openwrt / openwrt | cpe:2.3:o:openwrt:openwrt:19.07.0:-:*:*:*:*:*:* |
| openwrt / openwrt | cpe:2.3:o:openwrt:openwrt:21.02.0:-:*:*:*:*:*:* |
| mediatek / mt6890 | cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:* |
| mediatek / mt7615 | cpe:2.3:h:mediatek:mt7615:-:*:*:*:*:*:*:* |
| mediatek / mt7622 | cpe:2.3:h:mediatek:mt7622:-:*:*:*:*:*:*:* |
| mediatek / mt7663 | cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:* |
| mediatek / mt7915 | cpe:2.3:h:mediatek:mt7915:-:*:*:*:*:*:*:* |
| mediatek / mt7916 | cpe:2.3:h:mediatek:mt7916:-:*:*:*:*:*:*:* |
| mediatek / mt7981 | cpe:2.3:h:mediatek:mt7981:-:*:*:*:*:*:*:* |
| mediatek / mt7986 | cpe:2.3:h:mediatek:mt7986:-:*:*:*:*:*:*:* |