In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00415570; Issue ID: MSV-3404.
CVSS
No CVSS.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/July-2025 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
History
09 Jul 2025, 17:23
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://corp.mediatek.com/product-security-bulletin/July-2025 - Vendor Advisory | |
| CPE | cpe:2.3:h:mediatek:mt6890:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7915:-:*:*:*:*:*:*:* cpe:2.3:o:openwrt:openwrt:19.07.0:-:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7981:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7986:-:*:*:*:*:*:*:* cpe:2.3:o:openwrt:openwrt:21.02.0:-:*:*:*:*:*:* cpe:2.3:h:mediatek:mt7916:-:*:*:*:*:*:*:* cpe:2.3:a:mediatek:software_development_kit:*:*:*:*:*:*:*:* |
|
| First Time |
Openwrt openwrt
Mediatek mt6890 Mediatek mt7916 Openwrt Mediatek software Development Kit Mediatek mt7981 Mediatek mt7915 Mediatek Mediatek mt7986 |
08 Jul 2025, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE |
08 Jul 2025, 03:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-07-08 03:15
Updated : 2025-07-09 17:23
NVD link : CVE-2025-20686
Mitre link : CVE-2025-20686
JSON object : View
Products Affected
mediatek
- mt7916
- mt6890
- mt7986
- software_development_kit
- mt7981
- mt7915
openwrt
- openwrt
CWE
No CWE.