CVE-2025-20671 - AskarLabs CVE Database

CVE-2025-20671

Vendor Mediatek, Inc.

Product MT2718, MT6878, MT6897, MT6899, MT6989, MT6991, MT8196, MT8391, MT8676, MT8678

Weakness CWE-787

Published May 5, 2025

Last update February 26, 2026

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

In thermal, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09698599; Issue ID: MSV-3228.

Key dates

02Disclosure timeline

May 5, 2025 CVE published

February 26, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-20671 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/787.html

Related vulnerabilities

04Related CVE

CVE-2026-35195 Wasmtime has an out-of-bounds write or crash when transcoding component model strings CVE-2024-8830 PDF-XChange Editor XPS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2025-20656 CVE-2022-30665 Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability CVE-2026-10718 Open Seachest/Seachest NVMe Trim (Deallocate) Vulnerability