In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389046 (Note: For MT79XX chipsets) / ALPS09136501 (Note: For MT2737, MT3603, MT6XXX, and MT8XXX chipsets); Issue ID: MSV-1797.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/February-2025 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
22 Apr 2025, 13:50
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:mediatek:mt7920:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt2737:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7921:-:*:*:*:*:*:*:* cpe:2.3:a:linuxfoundation:yocto:5.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8370:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7925:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:* cpe:2.3:o:openwrt:openwrt:23.05:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:* cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt3603:-:*:*:*:*:*:*:* cpe:2.3:a:linuxfoundation:yocto:3.3:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7922:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:* cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:* |
|
| References | () https://corp.mediatek.com/product-security-bulletin/February-2025 - Vendor Advisory | |
| First Time |
Mediatek mt7921
Mediatek mt6897 Linuxfoundation yocto Mediatek mt8390 Mediatek mt8678 Google android Mediatek mt6886 Mediatek mt6990 Mediatek mt8195 Mediatek mt6835 Mediatek mt3603 Mediatek mt8395 Mediatek mt7925 Mediatek Mediatek mt7920 Mediatek mt6985 Openwrt openwrt Mediatek mt6878 Mediatek mt8370 Mediatek mt8532 Mediatek mt7927 Mediatek mt7922 Openwrt Linuxfoundation Mediatek software Development Kit Mediatek mt6989 Mediatek mt7902 Mediatek mt2737 Mediatek mt8518s |
03 Feb 2025, 04:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-02-03 04:15
Updated : 2025-04-22 13:50
NVD link : CVE-2024-20147
Mitre link : CVE-2024-20147
JSON object : View
Products Affected
mediatek
- mt2737
- mt8518s
- mt3603
- mt7902
- mt8195
- mt6989
- software_development_kit
- mt7920
- mt6985
- mt8370
- mt7921
- mt7925
- mt8678
- mt7922
- mt6886
- mt8532
- mt6897
- mt7927
- mt8395
- mt6878
- mt8390
- mt6835
- mt6990
linuxfoundation
- yocto
openwrt
- openwrt
- android
CWE
No CWE.