CVE-2025-20653

CVE-2025-20653

Vendor Mediatek, Inc.
Product MT6781, MT6789, MT6835, MT6855, MT6878, MT6879, MT6886, MT6895, MT6897, MT6983, MT6985, MT6989, MT8370, MT8390
Weakness CWE-190
Published March 3, 2025
Last update March 20, 2025

CVSS base score

What the vulnerability does

01Description

In da, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291064; Issue ID: MSV-2046.

Key dates

02Disclosure timeline

March 3, 2025 CVE published
March 20, 2025 Record updated