CVE-2025-20792

CVE-2025-20792

Vendor Mediatek, Inc.
Product MT2735, MT6833, MT6833P, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6880, MT6883, MT6885, MT6889, MT6890, MT6891, MT6893, MT8791T
Weakness CWE-617
Published December 2, 2025
Last update December 2, 2025

CVSS base score

What the vulnerability does

01Description

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01717526; Issue ID: MSV-5591.

Key dates

02Disclosure timeline

December 2, 2025 CVE published
December 2, 2025 Record updated