CVE-2025-20670 in MT2737情報

要約

〜によって MITRE • 2025年05月05日

In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with User execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01334347; Issue ID: MSV-2772.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

責任者

MediaTek

予約する

2024年11月01日

モデレーション

承諾済み

エントリ

VDB-307378

EPSS

0.00270

アクティビティ

非常低い

ソース

Want to stay up to date on a daily basis?

Enable the mail alert feature now!