CVE-2025-20708 | MediaTek MT8893 NR15/NR16/NR17/NR17R Modem out-of-bounds write

A vulnerability was found in MediaTek MT2735, MT2737, MT6813, MT6815, MT6833, MT6833P, MT6835, MT6835T, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6878, MT6878M, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6895TT, MT6896, MT6897, MT6899, MT6980, MT6980D, MT6983, MT6983T, MT6985, MT6985T, MT6989, MT6989T, MT6990, MT6991, MT8673, MT8675, MT8676, MT8678, MT8771, MT8791, MT8791T, MT8792, MT8795T, MT8797, MT8798, MT8863, MT8873, MT8883 and MT8893 NR15/NR16/NR17/NR17R and classified as critical. This affects an unknown function of the component Modem. Such manipulation leads to out-of-bounds write.

This vulnerability is listed as CVE-2025-20708. The attack may be performed from remote. There is no available exploit.

Applying a patch is advised to resolve this issue.

CVE-2025-20708 | MediaTek MT8893 NR15/NR16/NR17/NR17R Modem out-of-bounds write

Post correlati

CVE-2025-38614 | Linux Kernel up to 6.16.0 eventpoll ep_loop_check_proc recursion

CVE-2024-47095 | Follet School Solutions Destiny up to 22.0.1 AU0 handleloginform.do handleloginform expiredSupportMessage cross site scripting

CVE-2024-56714 | Linux Kernel up to 6.12.6 AER ionic_reset_prepare Privilege Escalation

CVE-2025-46405 | F5 BIG-IP APM up to 15.1.10/16.1.5/17.1.2 Traffic Management Microkernel denial of service (K000151546)