CVE-2025-20732
BaseFortify
Publication date: 2025-11-04
Last updated on: 2026-02-26
Assigner: MediaTek, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| mediatek | software_development_kit | to 7.6.7.2 (inc) |
| openwrt | openwrt | 19.07.0 |
| openwrt | openwrt | 21.02.0 |
| mediatek | mt6890 | * |
| mediatek | mt7615 | * |
| mediatek | mt7622 | * |
| mediatek | mt7663 | * |
| mediatek | mt7915 | * |
| mediatek | mt7916 | * |
| mediatek | mt7981 | * |
| mediatek | mt7986 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-121 | A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function). |
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an out of bounds write in the wlan AP driver caused by an incorrect bounds check. It can lead to local escalation of privilege if a malicious actor already has System privilege and the OceReducedNeighborReport feature is disabled. Exploitation does not require user interaction.
How can this vulnerability impact me? :
The vulnerability can allow a local attacker who already has System privilege to escalate their privileges further, potentially gaining higher control over the system. This could lead to unauthorized actions or system compromise.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch identified as WCNCR00441510 to the wlan AP driver to fix the out of bounds write vulnerability. Additionally, ensure that the OceReducedNeighborReport feature is enabled to reduce risk. Since exploitation requires already having System privilege, restrict access to privileged accounts and monitor for any unusual activity.