In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01673749; Issue ID: MSV-4643.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/December-2025 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
03 Dec 2025, 21:40
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8795t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6877tt:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8771:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8883:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8873:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8893:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6877t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6855t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8863:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6833p:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt2735:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:* cpe:2.3:o:mediatek:nr15:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6875t:-:*:*:*:*:*:*:* |
|
| References | () https://corp.mediatek.com/product-security-bulletin/December-2025 - Vendor Advisory | |
| First Time |
Mediatek mt6885
Mediatek mt8893 Mediatek mt6875t Mediatek nr15 Mediatek mt8755 Mediatek mt6883 Mediatek mt6853t Mediatek mt6873 Mediatek mt6877tt Mediatek mt6891 Mediatek mt6880 Mediatek mt8673 Mediatek mt8676 Mediatek mt8797 Mediatek mt6875 Mediatek mt8771 Mediatek mt6855t Mediatek Mediatek mt6893 Mediatek mt2735 Mediatek mt6877 Mediatek mt6853 Mediatek mt6855 Mediatek mt8675 Mediatek mt6877t Mediatek mt6833p Mediatek mt6889 Mediatek mt8791 Mediatek mt8791t Mediatek mt8798 Mediatek mt6833 Mediatek mt8795t Mediatek mt8863 Mediatek mt8678 Mediatek mt8792 Mediatek mt8873 Mediatek mt6890 Mediatek mt8883 Mediatek mt8793 |
02 Dec 2025, 15:15
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.3 |
02 Dec 2025, 03:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-12-02 03:16
Updated : 2025-12-03 21:40
NVD link : CVE-2025-20756
Mitre link : CVE-2025-20756
CVE.ORG link : CVE-2025-20756
JSON object : View
Products Affected
mediatek
- mt6855
- mt8797
- mt8678
- mt6880
- mt6855t
- mt8791
- mt6873
- mt8883
- mt8863
- mt6875
- mt6875t
- mt8676
- mt8893
- mt6893
- mt8673
- nr15
- mt6833p
- mt2735
- mt8792
- mt6877t
- mt8791t
- mt6883
- mt6877
- mt6891
- mt8675
- mt6833
- mt8798
- mt6853
- mt8873
- mt6890
- mt6853t
- mt8795t
- mt8793
- mt6877tt
- mt8755
- mt8771
- mt6885
- mt6889
CWE
CWE-1287
Improper Validation of Specified Type of Input