CRITICAL🇵🇱 Wersja polska

CVE-2023-32874

CVSS 9.8v3.1pub. 2024-01-02upd. 2025-04-17

In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01161803; Issue ID: MOLY01161803 (MSV-893).

🤖 AI Analysis
How it works

The vulnerability results from a lack of bounds checking in the MediaTek Modem IMS Stack, which allows writing beyond the allocated memory area (out of bounds write, CWE-787). An attacker can remotely trigger this vulnerability over the network without requiring privileges or user interaction. Successful exploitation of the vulnerability allows arbitrary code execution at the modem level.

Impact

An attacker can remotely execute arbitrary code (RCE) on a vulnerable device without any additional privileges, which may lead to complete compromise of system confidentiality, integrity, and availability.

Mitigation & patch

Apply patch with identifier MOLY01161803 (MSV-893) available in the MediaTek security bulletin from January 2024. Details available at: https://corp.mediatek.com/product-security-bulletin/January-2024

Who is affected

MediaTek LR13, MediaTek NR15, MediaTek NR16, MediaTek NR17, MediaTek MT2735 — devices with vulnerable Modem IMS Stack

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Mediatek Lr13

    OS
    Mediatek
    wszystkie wersje
  • Mediatek Mt2735

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6779

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6781

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6783

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6785

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6785t

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6789

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6813

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6833

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6833p

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6835

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6853

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6853t

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6855

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6873

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6875

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6877

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6877t

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6878

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6879

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6880

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6883

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6885

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6886

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6889

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6890

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6891

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6893

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6895

    HW
    Mediatek
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-20682CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds write w sterowniku WLAN AP MediaTek — privilege escalation

CVE-2025-20683CRITICAL9.8PL ✓ten sam produkt

Out of bounds write w sterowniku wlan AP — eskalacja uprawnień na układach MediaTek

CVE-2025-20681CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds write w sterowniku WLAN AP MediaTek – privilege escalation

CVE-2025-20674CRITICAL9.8PL ✓ten sam produkt

Brak weryfikacji uprawnień w sterowniku WLAN AP MediaTek — zdalne eskalowanie przywilejów

CVE-2025-20654CRITICAL9.8PL ✓ten sam produkt

RCE w usłudze WLAN MediaTek — błędne sprawdzenie granic zapisu (out of bounds write)