CRITICAL🇵🇱 Wersja polska

CVE-2024-20082

CVSS 9.8v3.1pub. 2024-08-14upd. 2025-05-30

In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01182594; Issue ID: MSV-1529.

🤖 AI Analysis
How it works

The vulnerability consists of a missing bounds check during memory operations in the Modem component, leading to memory corruption. An attacker can remotely send specially crafted data that triggers the vulnerability without any user interaction. According to CWE-119 classification, this is improper restriction of operations within a memory buffer.

Impact

An attacker can achieve remote code execution (RCE) at the modem component level without any additional privileges, which may result in complete takeover of the modem process and potential access to sensitive data.

Mitigation & patch

Apply patch with identifier MOLY01182594 (Issue ID: MSV-1529) according to the MediaTek security bulletin from August 2024 available at the address indicated in the manufacturer's references. OEM device manufacturers should immediately include the fix in software updates for their products.

Who is affected

MediaTek NR15, NR16, NR17, MT2735, MT2737 — devices equipped with the mentioned modem chipsets

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Mediatek Mt2735

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt2737

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6833

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6835

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6835t

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6853

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6855

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6873

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6875

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6875t

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6877

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6879

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6880

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6883

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6885

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6886

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6889

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6890

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6891

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6893

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6895

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6895tt

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6896

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6897

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6980

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6980d

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6983

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6985

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6989

    HW
    Mediatek
    wszystkie wersje
  • Mediatek Mt6990

    HW
    Mediatek
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-20682CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds write w sterowniku WLAN AP MediaTek — privilege escalation

CVE-2025-20683CRITICAL9.8PL ✓ten sam produkt

Out of bounds write w sterowniku wlan AP — eskalacja uprawnień na układach MediaTek

CVE-2025-20681CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds write w sterowniku WLAN AP MediaTek – privilege escalation

CVE-2025-20674CRITICAL9.8PL ✓ten sam produkt

Brak weryfikacji uprawnień w sterowniku WLAN AP MediaTek — zdalne eskalowanie przywilejów

CVE-2025-20654CRITICAL9.8PL ✓ten sam produkt

RCE w usłudze WLAN MediaTek — błędne sprawdzenie granic zapisu (out of bounds write)