9.3
CVE-2026-20407 - WLAN STA Driver Local Privilege Escalation via Missing Bounds Check
In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00464377; Issue ID: MSV-4905.
6.5
CVE-2026-20406 - Uncaught Exception in Modem Firmware Enables Remote Denial of Service
In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: β¦
6.5
CVE-2026-20405 - Missing Bounds Check in MediaTek Modem Causes Remote DenialβofβService
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:β¦
6.5
CVE-2026-20404 - Modem Input Validation Failure Causing Remote Denial of Service
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch β¦
6.5
CVE-2026-20403 - Modem Crash due to Missing Bounds Check Leading to Remote Denial of Service
In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:β¦
6.5
CVE-2026-20422 - Remote Denial of Service via Modem Crash on Rogue Base Station
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch β¦
6.5
CVE-2026-20421 - Modem Input Validation Crash Causing Remote Denial of Service via Rogue Base Station
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch β¦
6.5
CVE-2026-20402 - Modem Input Validation Failure Allowing Remote Denial of Service on MediaTek Chipsets
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch β¦
6.5
CVE-2026-20401 - Uncaught Exception Causes Remote Denial of Service in MediaTek Modem
In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: β¦
6.5
CVE-2026-20420 -
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch Iβ¦