No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Thu, 02 Jul 2026 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Memory Corruption in MediaTek Modem Firmware Allows Remote Privilege Escalation |
Thu, 02 Jul 2026 08:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Memory Corruption in MediaTek Modem Firmware Allows Remote Privilege Escalation |
Thu, 02 Jul 2026 01:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Memory Corruption in MediaTek Modem Firmware Allows Remote Privilege Escalation |
Wed, 01 Jul 2026 23:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | MediaTek Modem Firmware Vulnerability Allows Remote Privilege Escalation via Rogue Base Station |
Wed, 01 Jul 2026 19:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | MediaTek Modem Firmware Vulnerability Allows Remote Privilege Escalation via Rogue Base Station |
Wed, 01 Jul 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Mediatek, Inc.
Mediatek, Inc. mediatek Chipset |
|
| Vendors & Products |
Mediatek, Inc.
Mediatek, Inc. mediatek Chipset |
Wed, 01 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Wed, 01 Jul 2026 11:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Memory Corruption in Modem Leading to Remote Privilege Escalation |
Wed, 01 Jul 2026 06:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Memory Corruption in Modem Leading to Remote Privilege Escalation |
Wed, 01 Jul 2026 03:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01402160; Issue ID: MSV-7298. | |
| Weaknesses | CWE-787 | |
| References |
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: MediaTek
Published:
Updated: 2026-07-02T03:55:19.970Z
Reserved: 2025-11-03T01:30:59.014Z
Link: CVE-2026-20458
Updated: 2026-07-01T10:38:41.163Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-02T16:30:15Z