Description

In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01685181; Issue ID: MSV-4760.

Related CPE's

o

mediatek

nr17

-

Vulnerable

h

mediatek

mt6835

-

h

mediatek

mt6835t

-

h

mediatek

mt6878

-

h

mediatek

mt6878m

-

h

mediatek

mt6897

-

h

mediatek

mt6899

-

h

mediatek

mt6991

-

h

mediatek

mt8676

-

h

mediatek

mt8678

-

h

mediatek

mt8755

-

h

mediatek

mt8792

-

h

mediatek

mt8793

-

h

mediatek

mt8863

-

h

mediatek

mt8873

-

h

mediatek

mt8883

-

References

https://corp.mediatek.com/product-security-bulletin/January-2026

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-617

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 · High

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-06T02:15:41.807Z

3 days ago

Last modified

2026-01-08T19:25:45.517Z

19 hours ago