In Bluetooth Stack SW, there is a possible information disclosure due to a missing permission check. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00396437; Issue ID: MSV-2184.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/March-2025 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
22 Apr 2025, 13:46
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7961:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7925:-:*:*:*:*:*:*:* cpe:2.3:o:openwrt:openwrt:23.05:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6980:-:*:*:*:*:*:*:* cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:* |
|
| References | () https://corp.mediatek.com/product-security-bulletin/March-2025 - Vendor Advisory | |
| First Time |
Mediatek mt6980
Openwrt openwrt Mediatek mt7925 Mediatek mt6890 Mediatek mt7663 Mediatek mt7927 Openwrt Mediatek mt6990 Mediatek software Development Kit Mediatek mt6880 Mediatek mt7902 Mediatek mt7961 Mediatek |
|
| CWE | NVD-CWE-noinfo |
03 Mar 2025, 03:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-03-03 03:15
Updated : 2025-04-22 13:46
NVD link : CVE-2025-20649
Mitre link : CVE-2025-20649
JSON object : View
Products Affected
mediatek
- mt6890
- mt7902
- mt6980
- mt7927
- software_development_kit
- mt7925
- mt7961
- mt6880
- mt7663
- mt6990
openwrt
- openwrt
CWE