Mediatek Mt6785t
21 CVEs affecting Mediatek Mt6785t. Latest disclosed: 2026-03-02. Critical: 4, High: 13.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-32874 | Critical | 9.8 | 2024-01-02 | In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional executio… |
CVE-2023-20819 | Critical | 9.8 | 2023-10-02 | In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no addition… |
CVE-2022-21744 | Critical | 9.8 | 2022-07-06 | In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neigh… |
CVE-2022-20083 | Critical | 9.8 | 2022-07-06 | In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACIL… |
CVE-2024-20154 | High | 8.8 | 2025-01-06 | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue bas… |
CVE-2024-20039 | High | 8.8 | 2024-04-01 | In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution… |
CVE-2026-20434 | High | 7.5 | 2026-03-02 | In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a… |
CVE-2025-20667 | High | 7.5 | 2025-05-05 | In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected t… |
CVE-2024-20150 | High | 7.5 | 2025-01-06 | In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. Us… |
CVE-2024-20149 | High | 7.5 | 2025-01-06 | In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privilege… |
CVE-2023-32890 | High | 7.5 | 2024-01-02 | In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privi… |
CVE-2022-26446 | High | 7.5 | 2022-11-08 | In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SI… |
CVE-2021-40148 | High | 7.5 | 2022-01-04 | In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional… |
CVE-2021-32487 | High | 7.5 | 2021-09-09 | In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privi… |
CVE-2021-32486 | High | 7.5 | 2021-09-09 | In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privi… |
CVE-2021-32485 | High | 7.5 | 2021-09-09 | In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privi… |
CVE-2021-32484 | High | 7.5 | 2021-09-09 | In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privi… |
CVE-2023-32891 | Medium | 6.7 | 2024-01-02 | In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System ex… |
CVE-2025-20678 | Medium | 6.5 | 2025-06-02 | In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue… |
CVE-2025-20659 | Medium | 6.5 | 2025-04-07 | In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base… |