Mediatek Mt8370
31 CVEs affecting Mediatek Mt8370. Latest disclosed: 2026-05-04. Critical: 0, High: 6.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-20040 | High | 8.8 | 2024-04-01 | In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additiona… |
CVE-2024-20104 | High | 8.4 | 2024-11-04 | In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution pri… |
CVE-2026-20411 | High | 7.8 | 2026-02-02 | In cameraisp, there is a possible escalation of privilege due to use after free. This could lead to local denial of service if a malicious actor has already ob… |
CVE-2025-20795 | High | 7.8 | 2026-01-06 | In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has… |
CVE-2025-20721 | High | 7.8 | 2025-10-14 | In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has… |
CVE-2024-20138 | High | 7.5 | 2024-12-02 | In wlan driver, there is a possible out of bound read due to improper input validation. This could lead to remote information disclosure with no additional exe… |
CVE-2025-20696 | Medium | 6.8 | 2025-08-04 | In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical acc… |
CVE-2025-20656 | Medium | 6.8 | 2025-04-07 | In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical acc… |
CVE-2025-20650 | Medium | 6.8 | 2025-03-03 | In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical acc… |
CVE-2026-20451 | Medium | 6.7 | 2026-05-04 | In slbc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege if a malicious actor has already obtai… |
CVE-2026-20410 | Medium | 6.7 | 2026-02-02 | In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has alr… |
CVE-2024-20125 | Medium | 6.7 | 2024-12-02 | In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has alrea… |
CVE-2024-20108 | Medium | 6.7 | 2024-11-04 | In atci, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileg… |
CVE-2024-20059 | Medium | 6.7 | 2024-05-06 | In da, there is a possible escalation of privilege due to an incorrect status check. This could lead to local escalation of privilege with System execution pri… |
CVE-2024-20023 | Medium | 6.7 | 2024-03-04 | In flashc, there is a possible out of bounds write due to lack of valudation. This could lead to local escalation of privilege with System execution privileges… |
CVE-2025-20635 | Medium | 6.6 | 2025-02-03 | In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical… |
CVE-2024-20144 | Medium | 6.6 | 2025-01-06 | In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical… |
CVE-2024-20143 | Medium | 6.6 | 2025-01-06 | In V6 DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical… |
CVE-2025-20694 | Medium | 6.5 | 2025-07-08 | In Bluetooth FW, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service with no additional execution privil… |
CVE-2025-20653 | Medium | 6.5 | 2025-03-03 | In da, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure, if an attacker has physical access t… |