Mediatek Lr12a
17 CVEs affecting Mediatek Lr12a. Latest disclosed: 2026-03-02. Critical: 3, High: 12.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-20819 | Critical | 9.8 | 2023-10-02 | In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no addition… |
CVE-2022-21744 | Critical | 9.8 | 2022-07-06 | In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neigh… |
CVE-2022-20083 | Critical | 9.8 | 2022-07-06 | In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACIL… |
CVE-2024-20154 | High | 8.8 | 2025-01-06 | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue bas… |
CVE-2024-20039 | High | 8.8 | 2024-04-01 | In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution… |
CVE-2025-20727 | High | 8.1 | 2025-11-04 | In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege, if a UE has connected to a… |
CVE-2026-20434 | High | 7.5 | 2026-03-02 | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a… |
CVE-2025-20726 | High | 7.5 | 2025-11-04 | In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a UE has connected to… |
CVE-2025-20725 | High | 7.5 | 2025-11-04 | In ims service, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected… |
CVE-2025-20667 | High | 7.5 | 2025-05-05 | In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected t… |
CVE-2024-20150 | High | 7.5 | 2025-01-06 | In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. Us… |
CVE-2024-20077 | High | 7.5 | 2024-07-01 | In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges… |
CVE-2024-20076 | High | 7.5 | 2024-07-01 | In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges… |
CVE-2022-26446 | High | 7.5 | 2022-11-08 | In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SI… |
CVE-2021-40148 | High | 7.5 | 2022-01-04 | In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional… |
CVE-2025-20678 | Medium | 6.5 | 2025-06-02 | In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue… |
CVE-2023-32840 | Medium | 6.5 | 2023-11-06 | In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution pr… |