CVE-2025-20636

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MediaTek MT8798 Secmem (affected versions not specified)

Description In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

ASB-A-381773171

CVE-2025-20636

M-ALPS09403554

Affected Products

Mediatek Mt8798 Secmem

CVE-2025-20636

Weakness Enumeration

Related Identifiers

Affected Products

References · 10