CVE-2025-20665

CVE-2025-20665

Vendor Mediatek, Inc.
Product MT6580, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6983, MT6985, MT8175, MT8195, MT8196, MT8321, MT8365, MT8370, MT8385, MT8390, MT8395,
Weakness CWE-538
Published May 5, 2025
Last update May 12, 2025

CVSS base score

What the vulnerability does

01Description

In devinfo, there is a possible information disclosure due to a missing SELinux policy. This could lead to local information disclosure of device identifier with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09555228; Issue ID: MSV-2760.

Key dates

02Disclosure timeline

May 5, 2025 CVE published
May 12, 2025 Record updated