GCVE - cpe:2.3:o:mediatek:mt8798_firmware:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:mediatek:mt8798_firmware:-:*:*:*:*:*:*:*

part: o version: - update: *

Vendor	Mediatek (`eceb6b1d-81fa-55a4-b2be-fe736dad9132`)
Product	Mt8798 Firmware (`48f8be1f-7ec6-59cf-b94e-095663ff1b0c`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2026-20450`	vulnerable	2026-06-03 15:15:46.198515	Details available In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01753620; Issue ID: MSV-6100. Published: 2026-05-04T05:41:56.258Z Updated: 2026-05-04T12:59:48.327Z Open on db.gcve.eu Reference links https://corp.mediatek.com/product-security-bulletin/May-2026	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-20449`	vulnerable	2026-06-03 15:15:46.187242	Details available In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01760138; Issue ID: MSV-6148. Published: 2026-05-04T05:41:54.581Z Updated: 2026-05-04T12:59:15.818Z Open on db.gcve.eu Reference links https://corp.mediatek.com/product-security-bulletin/May-2026	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-20433`	vulnerable	2026-06-03 15:15:45.974149	Details available In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01088681; Issue ID: MSV-4460. Published: 2026-04-07T03:25:32.066Z Updated: 2026-04-08T03:55:26.543Z Open on db.gcve.eu Reference links https://corp.mediatek.com/product-security-bulletin/April-2026	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2026-20432`	vulnerable	2026-06-03 15:15:45.884467	Details available In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01406170; Issue ID: MSV-4461. Published: 2026-04-07T03:25:30.263Z Updated: 2026-04-08T03:55:25.369Z Open on db.gcve.eu Reference links https://corp.mediatek.com/product-security-bulletin/April-2026	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-20659`	vulnerable	2026-06-03 14:59:15.158023	Details available In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01519028; Issue ID: MSV-2768. Published: 2025-04-07T03:14:54.034Z Updated: 2026-02-17T14:35:12.390Z Open on db.gcve.eu Reference links https://corp.mediatek.com/product-security-bulletin/April-2025	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.