anonhaven
Ad

CVE-2026-20431

MEDIUM CVSS 3.1: 6.5 EPSS 0.02%
Updated Apr 10, 2026
Mediatek
Parameter Value
CVSS 6.5 (MEDIUM)
Type CWE-770 (Allocation Without Limits)
Vendor Mediatek
Public PoC No

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation.

Patch ID: MOLY01106496; Issue ID: MSV-4467.

Attack Parameters

Attack Vector
Adjacent
Requires local network access
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
None
No data leak
Integrity
None
No data modification
Availability
High
Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-770 Allocation Without Limits

Vulnerable Products 38

Configuration From (including) Up to (excluding)
Mediatek Mt6813_Firmware
cpe:2.3:o:mediatek:mt6813_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6813
cpe:2.3:h:mediatek:mt6813:-:*:*:*:*:*:*:*
Mediatek Mt6815_Firmware
cpe:2.3:o:mediatek:mt6815_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6815
cpe:2.3:h:mediatek:mt6815:-:*:*:*:*:*:*:*
Mediatek Mt6835_Firmware
cpe:2.3:o:mediatek:mt6835_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6835
cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*
Mediatek Mt6878_Firmware
cpe:2.3:o:mediatek:mt6878_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6878
cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*
Mediatek Mt6897_Firmware
cpe:2.3:o:mediatek:mt6897_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6897
cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*
Mediatek Mt6899_Firmware
cpe:2.3:o:mediatek:mt6899_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6899
cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*
Mediatek Mt6986_Firmware
cpe:2.3:o:mediatek:mt6986_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6986
cpe:2.3:h:mediatek:mt6986:-:*:*:*:*:*:*:*
Mediatek Mt6991_Firmware
cpe:2.3:o:mediatek:mt6991_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6991
cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*
Mediatek Mt6993_Firmware
cpe:2.3:o:mediatek:mt6993_firmware:-:*:*:*:*:*:*:*
Mediatek Mt6993
cpe:2.3:h:mediatek:mt6993:-:*:*:*:*:*:*:*
Mediatek Mt8668_Firmware
cpe:2.3:o:mediatek:mt8668_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8668
cpe:2.3:h:mediatek:mt8668:-:*:*:*:*:*:*:*
Mediatek Mt8676_Firmware
cpe:2.3:o:mediatek:mt8676_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8676
cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*
Mediatek Mt8678_Firmware
cpe:2.3:o:mediatek:mt8678_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8678
cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*
Mediatek Mt8755_Firmware
cpe:2.3:o:mediatek:mt8755_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8755
cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*
Mediatek Mt8775_Firmware
cpe:2.3:o:mediatek:mt8775_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8775
cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:*
Mediatek Mt8792_Firmware
cpe:2.3:o:mediatek:mt8792_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8792
cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*
Mediatek Mt8793_Firmware
cpe:2.3:o:mediatek:mt8793_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8793
cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*
Mediatek Mt8863_Firmware
cpe:2.3:o:mediatek:mt8863_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8863
cpe:2.3:h:mediatek:mt8863:-:*:*:*:*:*:*:*
Mediatek Mt8873_Firmware
cpe:2.3:o:mediatek:mt8873_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8873
cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*
Mediatek Mt8883_Firmware
cpe:2.3:o:mediatek:mt8883_firmware:-:*:*:*:*:*:*:*
Mediatek Mt8883
cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*

References 1

https://corp.mediatek.com/product-security-bulletin/April-2026
security@mediatek.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-20446

Mediatek

4.3

CVE-2026-20433

Mediatek

8.8

CVE-2026-20432

Mediatek

8.0

CVE-2026-20445

Google

4.4

CVE-2026-20444

Google

6.7