Search criteria

24763 vulnerabilities found for Android by Google

CVE-2025-36911 (GCVE-0-2025-36911)

Vulnerability from nvd – Published: 2026-01-15 17:41 – Updated: 2026-01-15 18:16
VLAI?
Summary
In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user's conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity ?
7.1 (High)
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
CWE
  • Information disclosure
Assigner
References
Impacted products
Vendor Product Version
Google Android Affected: Android kernel
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "ADJACENT_NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 7.1,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "LOW",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-36911",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-15T18:11:17.771531Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-15T18:16:29.966Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "third-party-advisory"
            ],
            "url": "https://whisperpair.eu/"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Android",
          "vendor": "Google",
          "versions": [
            {
              "status": "affected",
              "version": "Android kernel"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user\u0027s conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information disclosure",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-15T17:41:57.504Z",
        "orgId": "83238938-5644-45f0-9007-c0392bcf6222",
        "shortName": "Google_Devices"
      },
      "references": [
        {
          "url": "https://source.android.com/security/bulletin/pixel/2026-01-01"
        }
      ],
      "x_generator": {
        "engine": "cvelib 1.7.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "83238938-5644-45f0-9007-c0392bcf6222",
    "assignerShortName": "Google_Devices",
    "cveId": "CVE-2025-36911",
    "datePublished": "2026-01-15T17:41:57.504Z",
    "dateReserved": "2025-04-16T00:33:24.577Z",
    "dateUpdated": "2026-01-15T18:16:29.966Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-20801 (GCVE-0-2025-20801)

Vulnerability from nvd – Published: 2026-01-06 01:46 – Updated: 2026-01-12 08:55
VLAI?
Summary
In seninf, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10251210; Issue ID: MSV-4926.
Severity ?
7 (High)
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE
  • CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Assigner
References
Impacted products
Vendor Product Version
MediaTek, Inc. MT6878, MT6897, MT6899, MT6985, MT6989, MT6991, MT6993, MT8792, MT8796, MT8798 Affected: Android 13.0, 14.0, 15.0, 16.0
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-20801",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-06T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-07T04:55:54.554Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MT6878, MT6897, MT6899, MT6985, MT6989, MT6991, MT6993, MT8792, MT8796, MT8798",
          "vendor": "MediaTek, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "Android 13.0, 14.0, 15.0, 16.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In seninf, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10251210; Issue ID: MSV-4926."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-362",
              "description": "CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-12T08:55:34.275Z",
        "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "shortName": "MediaTek"
      },
      "references": [
        {
          "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
    "assignerShortName": "MediaTek",
    "cveId": "CVE-2025-20801",
    "datePublished": "2026-01-06T01:46:49.056Z",
    "dateReserved": "2024-11-01T01:21:50.406Z",
    "dateUpdated": "2026-01-12T08:55:34.275Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-20781 (GCVE-0-2025-20781)

Vulnerability from nvd – Published: 2026-01-06 01:46 – Updated: 2026-01-12 08:34
VLAI?
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4699.
Severity ?
7.8 (High)
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE
Assigner
References
Impacted products
Vendor Product Version
MediaTek, Inc. MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8186, MT8188, MT8196, MT8667, MT8673, MT8676, MT8678, MT8765, MT8766, MT8768, MT8771, MT8781, MT8791T, MT8792, MT8793, MT8795T, MT8796, MT8798, MT8873, MT8883 Affected: Android 14.0, 15.0, 16.0
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-20781",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-06T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-07T04:56:04.660Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8186, MT8188, MT8196, MT8667, MT8673, MT8676, MT8678, MT8765, MT8766, MT8768, MT8771, MT8781, MT8791T, MT8792, MT8793, MT8795T, MT8796, MT8798, MT8873, MT8883",
          "vendor": "MediaTek, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "Android 14.0, 15.0, 16.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4699."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "CWE-416 Use After Free",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-12T08:34:49.204Z",
        "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "shortName": "MediaTek"
      },
      "references": [
        {
          "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
    "assignerShortName": "MediaTek",
    "cveId": "CVE-2025-20781",
    "datePublished": "2026-01-06T01:46:57.545Z",
    "dateReserved": "2024-11-01T01:21:50.401Z",
    "dateUpdated": "2026-01-12T08:34:49.204Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-20786 (GCVE-0-2025-20786)

Vulnerability from nvd – Published: 2026-01-06 01:47 – Updated: 2026-01-12 08:36
VLAI?
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4673.
Severity ?
6.7 (Medium)
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CWE
Assigner
References
Impacted products
Vendor Product Version
MediaTek, Inc. MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8186, MT8188, MT8196, MT8667, MT8673, MT8676, MT8678, MT8765, MT8766, MT8768, MT8771, MT8781, MT8791T, MT8792, MT8793, MT8795T, MT8796, MT8798, MT8873, MT8883 Affected: Android 14.0, 15.0, 16.0
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 6.7,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "HIGH",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-20786",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-06T00:00:00+00:00",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-07T04:55:27.924Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8186, MT8188, MT8196, MT8667, MT8673, MT8676, MT8678, MT8765, MT8766, MT8768, MT8771, MT8781, MT8791T, MT8792, MT8793, MT8795T, MT8796, MT8798, MT8873, MT8883",
          "vendor": "MediaTek, Inc.",
          "versions": [
            {
              "status": "affected",
              "version": "Android 14.0, 15.0, 16.0"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4673."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "CWE-416 Use After Free",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-12T08:36:44.770Z",
        "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "shortName": "MediaTek"
      },
      "references": [
        {
          "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
    "assignerShortName": "MediaTek",
    "cveId": "CVE-2025-20786",
    "datePublished": "2026-01-06T01:47:07.490Z",
    "dateReserved": "2024-11-01T01:21:50.402Z",
    "dateUpdated": "2026-01-12T08:36:44.770Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2025-36911 (GCVE-0-2025-36911)

Vulnerability from cvelistv5 – Published: 2026-01-15 17:41 – Updated: 2026-01-15 18:16
VLAI?
Summary
In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user's conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity ?
7.1 (High)
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
CWE
  • Information disclosure
Assigner
References
Impacted products
Vendor Product Version
Google Android Affected: Android kernel
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "ADJACENT_NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 7.1,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "LOW",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-36911",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-01-15T18:11:17.771531Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-01-15T18:16:29.966Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "third-party-advisory"
            ],
            "url": "https://whisperpair.eu/"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Android",
          "vendor": "Google",
          "versions": [
            {
              "status": "affected",
              "version": "Android kernel"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In key-based pairing, there is a possible ID due to a logic error in the code. This could lead to remote (proximal/adjacent) information disclosure of user\u0027s conversations and location with no additional execution privileges needed. User interaction is not needed for exploitation."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information disclosure",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-15T17:41:57.504Z",
        "orgId": "83238938-5644-45f0-9007-c0392bcf6222",
        "shortName": "Google_Devices"
      },
      "references": [
        {
          "url": "https://source.android.com/security/bulletin/pixel/2026-01-01"
        }
      ],
      "x_generator": {
        "engine": "cvelib 1.7.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "83238938-5644-45f0-9007-c0392bcf6222",
    "assignerShortName": "Google_Devices",
    "cveId": "CVE-2025-36911",
    "datePublished": "2026-01-15T17:41:57.504Z",
    "dateReserved": "2025-04-16T00:33:24.577Z",
    "dateUpdated": "2026-01-15T18:16:29.966Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CERTFR-2026-AVI-0011

Vulnerability from certfr_avis - Published: 2026-01-08 - Updated: 2026-01-08

Une vulnérabilité a été découverte dans Google Android. Elle permet à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products
Vendor Product Description
Google Android Android toutes versions avant le correctif du 5 janvier 2026
References
Bulletin de sécurité Google Android 2026-01-05 vendor-advisory

Show details on source website
To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Android toutes versions avant le correctif du 5 janvier 2026",
      "product": {
        "name": "Android",
        "vendor": {
          "name": "Google",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-54957",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-54957"
    }
  ],
  "initial_release_date": "2026-01-08T00:00:00",
  "last_revision_date": "2026-01-08T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0011",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-01-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Google Android. Elle permet \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Vuln\u00e9rabilit\u00e9 dans Google Android",
  "vendor_advisories": [
    {
      "published_at": "2026-01-05",
      "title": "Bulletin de s\u00e9curit\u00e9 Google Android",
      "url": "https://source.android.com/docs/security/bulletin/2026/2026-01-01?hl=fr"
    }
  ]
}

FKIE_CVE-2025-20800

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:23
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In mminfra, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10267349; Issue ID: MSV-5033.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt2718 -
mediatek mt6899 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8678 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5506327-7DDF-4E88-9EA8-10B8E32F848B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In mminfra, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10267349; Issue ID: MSV-5033."
    }
  ],
  "id": "CVE-2025-20800",
  "lastModified": "2026-01-08T19:23:42.990",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.060",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20807

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:20
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In dpe, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114841; Issue ID: MSV-4451.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 16.0
mediatek mt6899 -
mediatek mt6991 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In dpe, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114841; Issue ID: MSV-4451."
    }
  ],
  "id": "CVE-2025-20807",
  "lastModified": "2026-01-08T19:20:46.453",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.970",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-190"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20803

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:23
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In dpe, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10199779; Issue ID: MSV-4504.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 16.0
mediatek mt6899 -
mediatek mt6991 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In dpe, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10199779; Issue ID: MSV-4504."
    }
  ],
  "id": "CVE-2025-20803",
  "lastModified": "2026-01-08T19:23:03.343",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.460",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-190"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20802

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:23
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In geniezone, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10238968; Issue ID: MSV-4914.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 15.0
mediatek mt6991 -
mediatek mt8196 -
mediatek mt8367 -
mediatek mt8781 -
mediatek mt8786 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8367:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A28FA947-314F-465B-8ADD-F7973F02D82A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In geniezone, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10238968; Issue ID: MSV-4914."
    }
  ],
  "id": "CVE-2025-20802",
  "lastModified": "2026-01-08T19:23:24.283",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.333",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20801

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-12 09:15
Severity ?
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In seninf, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10251210; Issue ID: MSV-4926.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 13.0
google android 14.0
google android 15.0
google android 16.0
mediatek mt6878 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt6993 -
mediatek mt8792 -
mediatek mt8796 -
mediatek mt8798 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6993:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "57E92BE0-5E65-4770-8E1A-0E5D07A38164",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In seninf, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10251210; Issue ID: MSV-4926."
    }
  ],
  "id": "CVE-2025-20801",
  "lastModified": "2026-01-12T09:15:51.893",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.0,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.0,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.190",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-362"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-362"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20806

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:22
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114835; Issue ID: MSV-4479.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 16.0
mediatek mt6899 -
mediatek mt6991 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114835; Issue ID: MSV-4479."
    }
  ],
  "id": "CVE-2025-20806",
  "lastModified": "2026-01-08T19:22:32.897",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.847",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20804

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:22
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10198951; Issue ID: MSV-4503.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 16.0
mediatek mt6899 -
mediatek mt6991 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10198951; Issue ID: MSV-4503."
    }
  ],
  "id": "CVE-2025-20804",
  "lastModified": "2026-01-08T19:22:55.840",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.593",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20805

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:22
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114696; Issue ID: MSV-4480.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 16.0
mediatek mt6899 -
mediatek mt6991 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114696; Issue ID: MSV-4480."
    }
  ],
  "id": "CVE-2025-20805",
  "lastModified": "2026-01-08T19:22:41.417",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:44.717",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20796

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:24
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In imgsys, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10314745; Issue ID: MSV-5553.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 15.0
mediatek mt6989 -
mediatek mt8796 -
mediatek mt8893 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFAADB1-C2B2-47A6-BB66-761B964E7DFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In imgsys, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10314745; Issue ID: MSV-5553."
    }
  ],
  "id": "CVE-2025-20796",
  "lastModified": "2026-01-08T19:24:13.373",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:43.567",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-1285"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20797

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:24
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5534.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt2718 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6879 -
mediatek mt6893 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8367 -
mediatek mt8391 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8696 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8781 -
mediatek mt8786 -
mediatek mt8788e -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8796 -
mediatek mt8873 -
mediatek mt8883 -
mediatek mt8893 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5506327-7DDF-4E88-9EA8-10B8E32F848B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8367:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A28FA947-314F-465B-8ADD-F7973F02D82A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8391:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43B2824E-8D18-4DD7-91E7-41578B2FCD6C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8696:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26573298-76BC-49FE-8D99-CF03ED01B185",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8788e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEDF887A-1862-4336-ABFC-371838E1D029",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFAADB1-C2B2-47A6-BB66-761B964E7DFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5534."
    }
  ],
  "id": "CVE-2025-20797",
  "lastModified": "2026-01-08T19:24:04.953",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:43.690",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-121"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2025-20787

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:24
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149879; Issue ID: MSV-4658.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt2718 -
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8196 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8796 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5506327-7DDF-4E88-9EA8-10B8E32F848B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149879; Issue ID: MSV-4658."
    }
  ],
  "id": "CVE-2025-20787",
  "lastModified": "2026-01-08T19:24:44.190",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:43.050",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20795

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:24
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10276761; Issue ID: MSV-5141.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 13.0
google android 14.0
google android 15.0
google android 16.0
mediatek mt2718 -
mediatek mt6580 -
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6779 -
mediatek mt6781 -
mediatek mt6785 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6873 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8195 -
mediatek mt8196 -
mediatek mt8370 -
mediatek mt8390 -
mediatek mt8391 -
mediatek mt8395 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8696 -
mediatek mt8755 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8781 -
mediatek mt8786 -
mediatek mt8788e -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8796 -
mediatek mt8873 -
mediatek mt8883 -
mediatek mt8893 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5506327-7DDF-4E88-9EA8-10B8E32F848B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6580:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "46F71838-4E50-4F2A-9EB8-30AE5DF8511E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EBA369B8-8E23-492B-82CC-23114E6A5D1C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A82E0A4F-072F-474C-B94C-8114ABE05639",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6B8A36E-C5FB-44AE-A1C3-50EBF4C68F6B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "ED210E64-6CE7-42B1-849E-68C0E22521F6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8370:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DA2B6BB9-7544-41A7-BF3A-344AA4CC4B31",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B774B7D7-B7DD-43A0-833F-7E39DF82CA60",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8391:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43B2824E-8D18-4DD7-91E7-41578B2FCD6C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D98FBE1C-D57B-49D9-9C4E-8A133A0C1C89",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8696:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26573298-76BC-49FE-8D99-CF03ED01B185",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CF88096-5CBD-4A4B-8F47-33D38985956F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8788e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEDF887A-1862-4336-ABFC-371838E1D029",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFAADB1-C2B2-47A6-BB66-761B964E7DFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10276761; Issue ID: MSV-5141."
    }
  ],
  "id": "CVE-2025-20795",
  "lastModified": "2026-01-08T19:24:19.887",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:43.433",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20798

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:23
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5533.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt2718 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6879 -
mediatek mt6893 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8367 -
mediatek mt8391 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8696 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8781 -
mediatek mt8786 -
mediatek mt8788e -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8796 -
mediatek mt8873 -
mediatek mt8883 -
mediatek mt8893 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5506327-7DDF-4E88-9EA8-10B8E32F848B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8367:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A28FA947-314F-465B-8ADD-F7973F02D82A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8391:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43B2824E-8D18-4DD7-91E7-41578B2FCD6C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8696:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26573298-76BC-49FE-8D99-CF03ED01B185",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8788e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEDF887A-1862-4336-ABFC-371838E1D029",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFAADB1-C2B2-47A6-BB66-761B964E7DFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5533."
    }
  ],
  "id": "CVE-2025-20798",
  "lastModified": "2026-01-08T19:23:58.990",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:43.817",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20799

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:23
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In c2ps, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10274607; Issue ID: MSV-5049.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 15.0
google android 16.0
mediatek mt6899 -
mediatek mt6991 -
mediatek mt6993 -
mediatek mt8793 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6993:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "57E92BE0-5E65-4770-8E1A-0E5D07A38164",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In c2ps, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10274607; Issue ID: MSV-5049."
    }
  ],
  "id": "CVE-2025-20799",
  "lastModified": "2026-01-08T19:23:51.350",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:43.937",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20784

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:25
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4683.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4683."
    }
  ],
  "id": "CVE-2025-20784",
  "lastModified": "2026-01-08T19:25:00.310",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.673",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-457"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20785

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:24
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4677.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4677."
    }
  ],
  "id": "CVE-2025-20785",
  "lastModified": "2026-01-08T19:24:55.107",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.803",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20779

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:25
Severity ?
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible use after free due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184084; Issue ID: MSV-4720.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible use after free due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184084; Issue ID: MSV-4720."
    }
  ],
  "id": "CVE-2025-20779",
  "lastModified": "2026-01-08T19:25:28.873",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.0,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.0,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.050",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20782

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:25
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4685.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4685."
    }
  ],
  "id": "CVE-2025-20782",
  "lastModified": "2026-01-08T19:25:10.150",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.437",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20780

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184061; Issue ID: MSV-4712.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184061; Issue ID: MSV-4712."
    }
  ],
  "id": "CVE-2025-20780",
  "lastModified": "2026-01-08T19:25:24.750",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.177",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20786

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-12 09:15
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4673.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4673."
    }
  ],
  "id": "CVE-2025-20786",
  "lastModified": "2026-01-12T09:15:51.703",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.923",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20783

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:25
Severity ?
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4684.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4684."
    }
  ],
  "id": "CVE-2025-20783",
  "lastModified": "2026-01-08T19:25:05.273",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.557",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20781

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-12 09:15
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4699.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4699."
    }
  ],
  "id": "CVE-2025-20781",
  "lastModified": "2026-01-12T09:15:51.493",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:42.313",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Secondary"
    }
  ]
}

FKIE_CVE-2025-20778

Vulnerability from fkie_nvd - Published: 2026-01-06 02:15 - Updated: 2026-01-08 19:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184870; Issue ID: MSV-4729.
References
security@mediatek.comhttps://corp.mediatek.com/product-security-bulletin/January-2026Vendor Advisory
Impacted products
Vendor Product Version
google android 14.0
google android 15.0
google android 16.0
mediatek mt6739 -
mediatek mt6761 -
mediatek mt6765 -
mediatek mt6768 -
mediatek mt6781 -
mediatek mt6789 -
mediatek mt6833 -
mediatek mt6835 -
mediatek mt6853 -
mediatek mt6855 -
mediatek mt6877 -
mediatek mt6878 -
mediatek mt6879 -
mediatek mt6883 -
mediatek mt6885 -
mediatek mt6886 -
mediatek mt6889 -
mediatek mt6893 -
mediatek mt6895 -
mediatek mt6897 -
mediatek mt6899 -
mediatek mt6983 -
mediatek mt6985 -
mediatek mt6989 -
mediatek mt6991 -
mediatek mt8186 -
mediatek mt8188 -
mediatek mt8196 -
mediatek mt8667 -
mediatek mt8673 -
mediatek mt8676 -
mediatek mt8678 -
mediatek mt8765 -
mediatek mt8766 -
mediatek mt8768 -
mediatek mt8771 -
mediatek mt8781 -
mediatek mt8791t -
mediatek mt8792 -
mediatek mt8793 -
mediatek mt8795t -
mediatek mt8796 -
mediatek mt8798 -
mediatek mt8873 -
mediatek mt8883 -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
              "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7FA8A390-9F52-4CF3-9B45-936CE3E2B828",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B9B0D82-82C1-4A77-A016-329B99C45F49",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9814939B-F05E-4870-90C0-7C0F6BAAEB39",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "19A63103-C708-48EC-B44D-5E465A6B79C5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "89AFEE24-7AAD-4EDB-8C3E-EDBA3240730A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15E2EC3F-9FB3-488B-B1C1-2793A416C755",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD64413C-C774-4C4F-9551-89E1AA9469EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3B787DC3-8E5A-4968-B20B-37B6257FAAE2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AACF35D-27E0-49AF-A667-13585C8B8071",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "78D4E9E1-B044-41EC-BE98-22DC0E5E9010",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184870; Issue ID: MSV-4729."
    }
  ],
  "id": "CVE-2025-20778",
  "lastModified": "2026-01-08T19:25:37.193",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-06T02:15:41.927",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/January-2026"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}