Description

In geniezone, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10708513; Issue ID: MSV-6281.

INFO

Published Date :

2026-05-04T05:41:52.927Z

Last Modified :

2026-05-05T03:56:07.381Z

Source :

MediaTek
AFFECTED PRODUCTS

The following products are affected by CVE-2026-20448 vulnerability.

Vendors Products
Mediatek
  • Mt6765
  • Mt6765 Firmware
  • Mt6768
  • Mt6768 Firmware
  • Mt6789
  • Mt6789 Firmware
  • Mt6877
  • Mt6877 Firmware
  • Mt6897
  • Mt6897 Firmware
  • Mt6899
  • Mt6899 Firmware
  • Mt6989
  • Mt6989 Firmware
  • Mt6991
  • Mt6991 Firmware
  • Mt6993
  • Mt6993 Firmware
  • Mt8367
  • Mt8367 Firmware
  • Mt8766
  • Mt8766 Firmware
  • Mt8768
  • Mt8768 Firmware
  • Mt8775
  • Mt8775 Firmware
  • Mt8781
  • Mt8781 Firmware
  • Mt8786
  • Mt8786 Firmware
  • Mt8788e
  • Mt8788e Firmware
  • Mt8791t
  • Mt8791t Firmware
  • Mt8792
  • Mt8792 Firmware
  • Mt8793
  • Mt8793 Firmware
  • Mt8796
  • Mt8796 Firmware
  • Mt8893
  • Mt8893 Firmware
  • Mt8910
  • Mt8910 Firmware
Mediatek, Inc.
  • Mediatek Chipset
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-20448.

URL Resource
https://corp.mediatek.com/product-security-bulletin/May-2026 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact