216.73.217.172

CVE-2025-20735

· Published 04/11/2025 07:15 · Modified 05/11/2025 17:13

Labels: CVE-2025-20735 2025-11-04CVE-2025-20735CWE-122CWE-787[email protected]

Essential information

Published
04/11/2025 07:15
Modified
05/11/2025 17:13
Author
Creator
CVSS
7.8 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00435349; Issue ID: MSV-4051.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mediatek / software development kit cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:*
openwrt / openwrt cpe:2.3:o:openwrt:openwrt:19.07.0:-:*:*:*:*:*:*
openwrt / openwrt cpe:2.3:o:openwrt:openwrt:21.02.0:-:*:*:*:*:*:*
mediatek / mt6890 cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:*
mediatek / mt7615 cpe:2.3:h:mediatek:mt7615:-:*:*:*:*:*:*:*
mediatek / mt7622 cpe:2.3:h:mediatek:mt7622:-:*:*:*:*:*:*:*
mediatek / mt7663 cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:*
mediatek / mt7915 cpe:2.3:h:mediatek:mt7915:-:*:*:*:*:*:*:*
mediatek / mt7916 cpe:2.3:h:mediatek:mt7916:-:*:*:*:*:*:*:*
mediatek / mt7981 cpe:2.3:h:mediatek:mt7981:-:*:*:*:*:*:*:*
mediatek / mt7986 cpe:2.3:h:mediatek:mt7986:-:*:*:*:*:*:*:*

References