CVE-2025-20653

Published Mar 3, 2025

Last updated 14 days ago

CVSS medium 6.5

Overview

Description: In da, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291064; Issue ID: MSV-2046.
Source: security@mediatek.com
NVD status: Awaiting Analysis

Risk scores

CVSS 3.1

Type: Secondary
Base score: 6.5
Impact score: 5.9
Exploitability score: 0.6
Vector string: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Severity: MEDIUM

Weaknesses

security@mediatek.com: CWE-190

Hype score: Not currently trending

CVE-2025-20653 In da, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure, if an attacker has physical access to the d… https://t.co/wWRgu1SCi5
@CVEnew
3 Mar 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References