SB2025100848 - Multiple vulnerabilities in MediaTek chipsets
Published: October 8, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 16 secuirty vulnerabilities.
1) Stack-based buffer overflow (CVE-ID: CVE-2025-20714)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can perform service disruption.
2) Out-of-bounds read (CVE-ID: CVE-2025-20724)
The vulnerability allows a local application to gain access to sensitive information.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can gain access to sensitive information.
3) Stack-based buffer overflow (CVE-ID: CVE-2025-20717)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can perform service disruption.
4) Out-of-bounds write (CVE-ID: CVE-2025-20716)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can perform service disruption.
5) Out-of-bounds write (CVE-ID: CVE-2025-20715)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can perform service disruption.
6) Out-of-bounds write (CVE-ID: CVE-2025-20723)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an incorrect bounds check within gnss. A local application can perform service disruption.
7) Integer overflow (CVE-ID: CVE-2025-20722)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an integer overflow within gnss. A local application can perform service disruption.
8) Stack-based buffer overflow (CVE-ID: CVE-2025-20713)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can perform service disruption.
9) Heap-based Buffer Overflow (CVE-ID: CVE-2025-20712)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can execute arbitrary code.
10) Out-of-bounds write (CVE-ID: CVE-2025-20721)
The vulnerability allows a local application to perform service disruption.
The vulnerability exists due to a missing bounds check within imgsensor. A local application can perform service disruption.
11) Heap-based Buffer Overflow (CVE-ID: CVE-2025-20720)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can execute arbitrary code.
12) Stack-based buffer overflow (CVE-ID: CVE-2025-20719)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can execute arbitrary code.
13) Stack-based buffer overflow (CVE-ID: CVE-2025-20718)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can execute arbitrary code.
14) Buffer overflow (CVE-ID: CVE-2025-20709)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can execute arbitrary code.
15) Integer overflow (CVE-ID: CVE-2025-20710)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an integer overflow within wlan. A local application can execute arbitrary code.
16) Improper Validation of Specified Type of Input (CVE-ID: CVE-2025-20711)
The vulnerability allows a local application to execute arbitrary code.
The vulnerability exists due to an incorrect bounds check within wlan. A local application can execute arbitrary code.
Remediation
Install update from vendor's website.