CVE-2026-20447

In geniezone, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10724073; Issue ID: MSV-6296.

CVSS v3 6.7 MEDIUM

6.7^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://corp.mediatek.com/product-security-bulletin/May-2026	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:mediatek:mt6768_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:mediatek:mt6789_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:mediatek:mt6877_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:mediatek:mt6899_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:mediatek:mt6989_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:mediatek:mt6991_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:mediatek:mt6993_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6993:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:mediatek:mt8196_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8196:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:mediatek:mt8367_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8367:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:mediatek:mt8766_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:mediatek:mt8768_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:mediatek:mt8781_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:mediatek:mt8786_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:mediatek:mt8788e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8788e:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:mediatek:mt8791t_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:mediatek:mt8793_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:mediatek:mt8910_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt8910:-:*:*:*:*:*:*:*

History

07 May 2026, 12:43

Type	Values Removed	Values Added
First Time		Mediatek mt8788e Mediatek mt6989 Mediatek mt8793 Firmware Mediatek Mediatek mt8367 Firmware Mediatek mt8367 Mediatek mt8793 Mediatek mt8910 Firmware Mediatek mt6789 Firmware Mediatek mt6768 Firmware Mediatek mt8768 Mediatek mt8786 Firmware Mediatek mt8196 Firmware Mediatek mt6991 Firmware Mediatek mt8910 Mediatek mt8786 Mediatek mt8196 Mediatek mt6877 Firmware Mediatek mt8781 Firmware Mediatek mt6768 Mediatek mt8768 Firmware Mediatek mt8766 Mediatek mt8766 Firmware Mediatek mt8791t Mediatek mt8791t Firmware Mediatek mt6993 Mediatek mt6991 Mediatek mt8781 Mediatek mt6899 Mediatek mt6989 Firmware Mediatek mt8788e Firmware Mediatek mt6993 Firmware Mediatek mt6899 Firmware Mediatek mt6877 Mediatek mt6789
CPE		cpe:2.3:o:mediatek:mt8196_firmware:-:::::::* cpe:2.3:h:mediatek:mt8766:-:::::::* cpe:2.3:h:mediatek:mt8788e:-:::::::* cpe:2.3:h:mediatek:mt6768:-:::::::* cpe:2.3:o:mediatek:mt6768_firmware:-:::::::* cpe:2.3:h:mediatek:mt6789:-:::::::* cpe:2.3:h:mediatek:mt8367:-:::::::* cpe:2.3:h:mediatek:mt8793:-:::::::* cpe:2.3:h:mediatek:mt8910:-:::::::* cpe:2.3:o:mediatek:mt8781_firmware:-:::::::* cpe:2.3:o:mediatek:mt6899_firmware:-:::::::* cpe:2.3:h:mediatek:mt6991:-:::::::* cpe:2.3:o:mediatek:mt8367_firmware:-:::::::* cpe:2.3:o:mediatek:mt8788e_firmware:-:::::::* cpe:2.3:h:mediatek:mt8768:-:::::::* cpe:2.3:o:mediatek:mt8910_firmware:-:::::::* cpe:2.3:h:mediatek:mt6899:-:::::::* cpe:2.3:o:mediatek:mt8786_firmware:-:::::::* cpe:2.3:o:mediatek:mt8793_firmware:-:::::::* cpe:2.3:h:mediatek:mt6877:-:::::::* cpe:2.3:h:mediatek:mt8781:-:::::::* cpe:2.3:o:mediatek:mt8768_firmware:-:::::::* cpe:2.3:o:mediatek:mt6991_firmware:-:::::::* cpe:2.3:h:mediatek:mt6989:-:::::::* cpe:2.3:o:mediatek:mt6789_firmware:-:::::::* cpe:2.3:h:mediatek:mt6993:-:::::::* cpe:2.3:h:mediatek:mt8791t:-:::::::* cpe:2.3:o:mediatek:mt6989_firmware:-:::::::* cpe:2.3:o:mediatek:mt8791t_firmware:-:::::::* cpe:2.3:h:mediatek:mt8196:-:::::::* cpe:2.3:h:mediatek:mt8786:-:::::::* cpe:2.3:o:mediatek:mt8766_firmware:-:::::::* cpe:2.3:o:mediatek:mt6877_firmware:-:::::::* cpe:2.3:o:mediatek:mt6993_firmware:-:::::::*
References	~~() https://corp.mediatek.com/product-security-bulletin/May-2026 -~~	() https://corp.mediatek.com/product-security-bulletin/May-2026 - Vendor Advisory

04 May 2026, 14:16

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.7

04 May 2026, 07:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-05-04 07:15

Updated : 2026-05-07 12:43

NVD link : CVE-2026-20447

Mitre link : CVE-2026-20447

CVE.ORG link : CVE-2026-20447

JSON object : View

Products Affected

mediatek

mt8788e
mt8781
mt8196
mt8367_firmware
mt8786_firmware
mt8910
mt8768_firmware
mt6789
mt8793_firmware
mt6991_firmware
mt8766
mt6993_firmware
mt6899_firmware
mt8196_firmware
mt8788e_firmware
mt6877
mt6789_firmware
mt8766_firmware
mt6991
mt6989_firmware
mt8793
mt6877_firmware
mt6989
mt8791t
mt6768
mt8786
mt6993
mt8768
mt8791t_firmware
mt6899
mt8367
mt8910_firmware
mt6768_firmware
mt8781_firmware

CWE

CWE-125

Out-of-bounds Read

6.7 /10