Vulnerability Description
In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with User execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY01334347; Issue ID: MSV-2772.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mediatek | Nr16 | - |
| Mediatek | Nr17 | - |
| Mediatek | Nr17R | - |
| Mediatek | Mt2737 | - |
| Mediatek | Mt6813 | - |
| Mediatek | Mt6835 | - |
| Mediatek | Mt6835T | - |
| Mediatek | Mt6878 | - |
| Mediatek | Mt6878M | - |
| Mediatek | Mt6879 | - |
| Mediatek | Mt6886 | - |
| Mediatek | Mt6895 | - |
| Mediatek | Mt6895Tt | - |
| Mediatek | Mt6896 | - |
| Mediatek | Mt6897 | - |
| Mediatek | Mt6899 | - |
| Mediatek | Mt6980 | - |
| Mediatek | Mt6980D | - |
| Mediatek | Mt6983 | - |
| Mediatek | Mt6983T | - |
Related Weaknesses (CWE)
References
- https://corp.mediatek.com/product-security-bulletin/May-2025Vendor Advisory
FAQ
What is CVE-2025-20670?
CVE-2025-20670 is a vulnerability with a CVSS score of 5.7 (MEDIUM). In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by th...
How severe is CVE-2025-20670?
CVE-2025-20670 has been rated MEDIUM with a CVSS base score of 5.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-20670?
Check the references section above for vendor advisories and patch information. Affected products include: Mediatek Nr16, Mediatek Nr17, Mediatek Nr17R, Mediatek Mt2737, Mediatek Mt6813.