CVE-2025-20670 in MT2737informação

Sumário

de MITRE • 05/05/2025

In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with User execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01334347; Issue ID: MSV-2772.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsável

MediaTek

Reservar

01/11/2024

Divulgação

05/05/2025

Moderação

aceite

Entrada

VDB-307378

CPE

pronto

EPSS

0.00270

KEV

não

Atividades

muito baixo

Fontes

Do you want to use VulDB in your project?

Use the official API to access entries easily!