CVE-2026-20403
CVSS Score
6.5
EPSS Score
0.1%
EPSS Percentile
23th
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01689254 (Note: For N15 and NR16) / MOLY01689259 (Note: For NR17 and NR17R); Issue ID: MSV-4843.
| CWE | CWE-787 |
| Vendor | mediatek, inc. |
| Product | mediatek chipset |
| Published | Feb 2, 2026 |
| Last Updated | Mar 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for mediatek, inc. mediatek chipset
Be the first to know when new medium vulnerabilities affecting mediatek, inc. mediatek chipset are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
MediaTek, Inc. / MediaTek chipset
MT2735 MT2737 MT6813 MT6815 MT6833 MT6835 MT6853 MT6855 MT6873 MT6875 MT6877 MT6878 MT6879 MT6880 MT6883 MT6885 MT6886 MT6889 MT6890 MT6891 MT6893 MT6895 MT6896 MT6897 MT6899 MT6980 MT6983 MT6985 MT6989 MT6990 MT6991 MT6993 MT8673 MT8675 MT8676 MT8771 MT8791 MT8791T MT8795T MT8797 MT8798 MT8893