CVE-2025-20725

Name of the Vulnerable Software and Affected Versions Huawei IMS (affected versions not specified)

Description The IMS service contains a potential out-of-bounds write condition resulting from a missing bounds check. Successful exploitation could allow a remote attacker to escalate privileges. An attacker would need to control a rogue base station to which a User Equipment (UE) is connected. No additional execution privileges or user interaction are required for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.