CVE-2026-20431

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Modem (affected versions not specified)

Description A logic error may cause a system crash, potentially leading to a remote denial of service. This occurs if a User Equipment (UE) connects to a rogue base station controlled by an attacker. No additional execution privileges or user interaction are required for exploitation.

Recommendations Apply patch MOLY01106496.

Fix

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

CVE-2026-20431

Affected Products

Mediatek Chipset

Mt6813 Firmware

Mt6815 Firmware

Mt6835 Firmware

Mt6878 Firmware

Mt6897 Firmware

Mt6899 Firmware

Mt6986 Firmware

Mt6991 Firmware

Mt6993 Firmware

Mt8668 Firmware

Mt8676 Firmware

Mt8678 Firmware

Mt8755 Firmware

Mt8775 Firmware

Mt8792 Firmware

Mt8793 Firmware

Mt8863 Firmware

Mt8873 Firmware

Mt8883 Firmware

CVE-2026-20431

Weakness Enumeration

Related Identifiers

Affected Products

References · 4