CVE-2026-20407
BaseFortify
Publication date: 2026-02-02
Last updated on: 2026-02-04
Assigner: MediaTek, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| mediatek | nbiot_sdk | to 3.8 (inc) |
| mediatek | mt7902 | * |
| mediatek | mt7920 | * |
| mediatek | mt7921 | * |
| mediatek | mt7922 | * |
| mediatek | mt7925 | * |
| mediatek | mt7927 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the wlan STA driver where a missing bounds check can lead to a local escalation of privilege. It means that an attacker with user-level execution privileges can exploit this flaw to gain higher privileges on the system without needing any user interaction.
How can this vulnerability impact me? :
The vulnerability can allow an attacker who already has user-level access to escalate their privileges locally, potentially gaining unauthorized control over the system or sensitive functions, which can lead to further compromise of the device or data.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch identified as WCNCR00464377 provided by the vendor to fix the missing bounds check in the wlan STA driver, which addresses the local escalation of privilege issue.