Vulnerability Description
In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01760138; Issue ID: MSV-6148.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mediatek | Mt6763 Firmware | - |
| Mediatek | Mt6763 | - |
| Mediatek | Mt6765 Firmware | - |
| Mediatek | Mt6765 | - |
| Mediatek | Mt6767 Firmware | - |
| Mediatek | Mt6767 | - |
| Mediatek | Mt6768 Firmware | - |
| Mediatek | Mt6768 | - |
| Mediatek | Mt6769 Firmware | - |
| Mediatek | Mt6769 | - |
| Mediatek | Mt6771 Firmware | - |
| Mediatek | Mt6771 | - |
| Mediatek | Mt6779 Firmware | - |
| Mediatek | Mt6779 | - |
| Mediatek | Mt6781 Firmware | - |
| Mediatek | Mt6781 | - |
| Mediatek | Mt6783 Firmware | - |
| Mediatek | Mt6783 | - |
| Mediatek | Mt6785 Firmware | - |
| Mediatek | Mt6785 | - |
Related Weaknesses (CWE)
References
- https://corp.mediatek.com/product-security-bulletin/May-2026Vendor Advisory
FAQ
What is CVE-2026-20449?
CVE-2026-20449 is a vulnerability with a CVSS score of 6.5 (MEDIUM). In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no...
How severe is CVE-2026-20449?
CVE-2026-20449 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-20449?
Check the references section above for vendor advisories and patch information. Affected products include: Mediatek Mt6763 Firmware, Mediatek Mt6763, Mediatek Mt6765 Firmware, Mediatek Mt6765, Mediatek Mt6767 Firmware.