fkie_nvd - fkie_cve-2025-20743

fkie_cve-2025-20743

Vulnerability from fkie_nvd

Published

2025-11-04 07:15

Modified

2025-11-05 17:12

Severity ?

4.2 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
4.2 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

Summary

In clkdbg, there is a possible escalation of privilege due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10136671; Issue ID: MSV-4651.

References

	URL	Tags
	security@mediatek.com	https://corp.mediatek.com/product-security-bulletin/November-2025	Vendor Advisory

Impacted products

Vendor	Product	Version
google	android	14.0
google	android	15.0
google	android	16.0
mediatek	mt2718	-
mediatek	mt6761	-
mediatek	mt6765	-
mediatek	mt6768	-
mediatek	mt6781	-
mediatek	mt6853	-
mediatek	mt6877	-
mediatek	mt6886	-
mediatek	mt6893	-
mediatek	mt6897	-
mediatek	mt6899	-
mediatek	mt6983	-
mediatek	mt6989	-
mediatek	mt6991	-
mediatek	mt8113	-
mediatek	mt8163	-
mediatek	mt8168	-
mediatek	mt8169	-
mediatek	mt8183	-
mediatek	mt8186	-
mediatek	mt8188	-
mediatek	mt8195	-
mediatek	mt8196	-
mediatek	mt8321	-
mediatek	mt8365	-
mediatek	mt8385	-
mediatek	mt8390	-
mediatek	mt8391	-
mediatek	mt8512	-
mediatek	mt8516	-
mediatek	mt8519	-
mediatek	mt8676	-
mediatek	mt8678	-
mediatek	mt8695	-
mediatek	mt8696	-
mediatek	mt8698	-
mediatek	mt8755	-
mediatek	mt8766	-
mediatek	mt8768	-
mediatek	mt8771	-
mediatek	mt8775	-
mediatek	mt8781	-
mediatek	mt8786	-
mediatek	mt8788e	-
mediatek	mt8791t	-
mediatek	mt8792	-
mediatek	mt8793	-
mediatek	mt8796	-
mediatek	mt8797	-
mediatek	mt8798	-
mediatek	mt8873	-
mediatek	mt8883	-
mediatek	mt8893	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:google:android:16.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D49E611-5D53-479D-A981-42388FDC0E8D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:mediatek:mt2718:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F5506327-7DDF-4E88-9EA8-10B8E32F848B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F726F486-A86F-4215-AD93-7A07A071844A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43E779F6-F0A0-4153-9A1D-B715C3A2F80E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "06CD97E1-8A76-48B4-9780-9698EF5A960F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4EEE021-6B2A-47A0-AC6B-55525A40D718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "366F1912-756B-443E-9962-224937DD7DFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CA9352F-E9BD-4656-9B7C-4AFEE2C78E58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "213B5C7F-D965-4312-9CDF-4F06FA77D401",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8113:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F63268B4-5415-426A-A306-2006211FFE63",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8163:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D2ED140-C41B-418B-9DC7-8C486304E769",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3CE2FC35-716A-4706-97BA-5DB165041580",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8169:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E5375050-4568-4919-BFE3-A72E1C7E65A2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23F65D7B-31A1-4D94-82E9-254A7A6D7BE1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8186:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4932D34-06F4-49D7-81FB-772A82E8A5B5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "ED210E64-6CE7-42B1-849E-68C0E22521F6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0C4D80-28BC-4C4D-B522-AD9EC5222A2E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8321:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "793B7F88-79E7-4031-8AD0-35C9BFD073C4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "97C76F98-5D8D-4E52-ABAF-CD27C1205B0E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8385:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "299378ED-41CE-4966-99B1-65D2BA1215EF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B774B7D7-B7DD-43A0-833F-7E39DF82CA60",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8391:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "43B2824E-8D18-4DD7-91E7-41578B2FCD6C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8512:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E51B721-CBDD-4223-ACD1-509E82D1B4A2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8516:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B39C49F-918A-432E-9E02-4E32E4E1B0F8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8519:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD1E2F45-F68E-4D08-A9A8-FC185A0B1270",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "152A5F3D-8004-4649-BDB1-E6F0798AF1CB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B5126E05-25DC-4EF7-8DDE-BBA38A7547FB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8696:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "26573298-76BC-49FE-8D99-CF03ED01B185",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8698:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A8B1C43-5770-440F-8015-3BBBD7AF8386",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CF88096-5CBD-4A4B-8F47-33D38985956F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE45F606-2E75-48BC-9D1B-99D504974CBF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1CC6E254-11A9-49CE-83FE-6DAC23E7D7AA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D09F23D-D023-4A60-B426-61251FDD8A5A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE5FB550-7264-4879-BAF9-6798949113AF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "533284E5-C3AF-48D3-A287-993099DB2E41",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D2D5F91-6AAB-4516-AD01-5C60F58BA4A6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8788e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEDF887A-1862-4336-ABFC-371838E1D029",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB05B1D-77C9-4E42-91AD-9F087413DC20",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "336FC69E-E89F-4642-B6B9-8009D9A2BD52",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE933AD9-3A6F-421B-8AB3-C45F8DEA9548",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2B469BF4-5961-42E9-814B-1BE06D182E45",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "637CAAD2-DCC0-4F81-B781-5D0536844CA8",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6DD525F-7050-42BD-829D-1121698B8009",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23DD8281-FEB4-4E23-8DDA-680FF895F12E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCFAADB1-C2B2-47A6-BB66-761B964E7DFB",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In clkdbg, there is a possible escalation of privilege due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10136671; Issue ID: MSV-4651."
    }
  ],
  "id": "CVE-2025-20743",
  "lastModified": "2025-11-05T17:12:09.640",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "LOW",
          "baseScore": 4.2,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 3.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "LOW",
          "baseScore": 4.2,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 3.4,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-11-04T07:15:46.333",
  "references": [
    {
      "source": "security@mediatek.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://corp.mediatek.com/product-security-bulletin/November-2025"
    }
  ],
  "sourceIdentifier": "security@mediatek.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "security@mediatek.com",
      "type": "Secondary"
    }
  ]
}

CVE-2025-20743 (GCVE-0-2025-20743)

Vulnerability from cvelistv5

Published

2025-11-04 06:19

Modified

2025-11-05 04:55

Severity ?

4.2 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-416 - Use After Free

Summary

References

URL

	Vendor	Product	Version
	MediaTek, Inc.	MT2718, MT6761, MT6765, MT6768, MT6781, MT6853, MT6877, MT6886, MT6893, MT6897, MT6899, MT6983, MT6989, MT6991, MT8113, MT8163, MT8168, MT8169, MT8183, MT8186, MT8188, MT8195, MT8196, MT8321, MT8365, MT8385, MT8390, MT8391, MT8512, MT8516, MT8519, MT8676, MT8678, MT8695, MT8696, MT8698, MT8755, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788E, MT8791T, MT8792, MT8793, MT8796, MT8797, MT8798, MT8873, MT8883, MT8893	Version: Android 14.0, 15.0, 16.0

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted