216.73.217.86

CVE-2025-20746

· Published 04/11/2025 07:15 · Modified 05/11/2025 17:11

Labels: CVE-2025-20746 2025-11-04CVE-2025-20746CWE-121CWE-787[email protected]

Essential information

Published
04/11/2025 07:15
Modified
05/11/2025 17:11
Author
Creator
CVSS
6.7 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10010441; Issue ID: MSV-3967.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
linuxfoundation / yocto cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
rdkcentral / rdk-b cpe:2.3:a:rdkcentral:rdk-b:2024q1:*:*:*:*:*:*:*
google / android cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*
google / android cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*
openwrt / openwrt cpe:2.3:o:openwrt:openwrt:21.02.0:-:*:*:*:*:*:*
openwrt / openwrt cpe:2.3:o:openwrt:openwrt:23.05.0:-:*:*:*:*:*:*
zephyrproject / zephyr cpe:2.3:o:zephyrproject:zephyr:3.7.0:-:*:*:*:*:*:*
mediatek / mt2718 cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*
mediatek / mt2737 cpe:2.3:h:mediatek:mt2737:-:*:*:*:*:*:*:*
mediatek / mt6835 cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*
mediatek / mt6878 cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*
mediatek / mt6886 cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
mediatek / mt6897 cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*
mediatek / mt6899 cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*
mediatek / mt6982 cpe:2.3:h:mediatek:mt6982:-:*:*:*:*:*:*:*
mediatek / mt6985 cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
mediatek / mt6986 cpe:2.3:h:mediatek:mt6986:-:*:*:*:*:*:*:*
mediatek / mt6986d cpe:2.3:h:mediatek:mt6986d:-:*:*:*:*:*:*:*
mediatek / mt6989 cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*
mediatek / mt6990 cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*
mediatek / mt6991 cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*
mediatek / mt8676 cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*
mediatek / mt8678 cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*
mediatek / mt8755 cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*
mediatek / mt8893 cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*

References