PT-2025-4156 · Mediatek · Mediatek Mt7986+1

Published

2025-02-03

Updated

2025-02-08

CVE-2025-20637

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions MediaTek MT7981/MT7986 versions up to 7.6.7.0

Description In network hardware, there is a possible system hang due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Recommendations For MediaTek MT7981/MT7986 versions up to 7.6.7.0, apply the patch with ID WCNCR00399035 to resolve the issue. As a temporary workaround, consider implementing measures to prevent remote denial of service attacks until the patch is applied.

Fix

DoS

Improper Check for Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-754CWE-248

Related Identifiers

CVE-2025-20637

Affected Products

Mediatek Mt7981

Mediatek Mt7986

PT-2025-4156 · Mediatek · Mediatek Mt7986+1

CVE-2025-20637

Weakness Enumeration

Related Identifiers

Affected Products

References · 11