216.73.216.133

CVE-2025-20667

· Published 05/05/2025 03:15 · Modified 05/05/2025 20:54

Labels: CVE-2025-20667 2025-05-05CVE-2025-20667CWE-326[email protected]

Essential information

Published
05/05/2025 03:15
Modified
05/05/2025 20:54
Author
Creator
CISA KEV
No
CWE

Description

In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01513293; Issue ID: MSV-2741.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mediatek / modem cpe:2.3:a:mediatek:modem:*:*:*:*:*:*:*:*

References