CVE-2025-20795
CVSS Score
7.8
EPSS Score
0.0%
EPSS Percentile
1th
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10276761; Issue ID: MSV-5141.
| CWE | CWE-787 |
| Vendor | mediatek, inc. |
| Product | mediatek chipset |
| Published | Jan 6, 2026 |
| Last Updated | Mar 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for mediatek, inc. mediatek chipset
Be the first to know when new high vulnerabilities affecting mediatek, inc. mediatek chipset are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
MediaTek, Inc. / MediaTek chipset
MT2718 MT6580 MT6739 MT6761 MT6765 MT6768 MT6779 MT6781 MT6785 MT6789 MT6833 MT6835 MT6853 MT6855 MT6873 MT6877 MT6878 MT6879 MT6883 MT6885 MT6886 MT6889 MT6893 MT6895 MT6897 MT6899 MT6983 MT6985 MT6989 MT6991 MT8186 MT8188 MT8195 MT8196 MT8370 MT8390 MT8391 MT8395 MT8676 MT8678 MT8696 MT8755 MT8766 MT8768 MT8781 MT8786 MT8788E MT8791T MT8792 MT8793 MT8796 MT8873 MT8883 MT8893