CVE-2026-20452
8.0 HIGHIn wlan AP driver, there is a possible memory corruption due to a heap buffer overflow
Published: 2026-06-01 · Last updated: 2026-06-01
Severity and scoring
- CVSS
- 8.0 HIGH
- Vector
- CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-122
Affected products
| Vendor | Product |
|---|---|
| mediatek | mt6890_firmware, mt7615_firmware, mt7915_firmware |
Description
In wlan AP driver, there is a possible memory corruption due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00480138; Issue ID: MSV-6295.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2026-20456 — In wlan STA driver, there is a possible system crash due to a missing bounds check (5.5 MEDIUM)
- CVE-2026-20455 — In geniezone, there is a possible out of bounds write due to a missing bounds check (7.8 HIGH)
- CVE-2026-20454 — In geniezone, there is a possible out of bounds write due to a race condition (6.4 MEDIUM)
- CVE-2026-20453 — In geniezone, there is a possible out of bounds write due to a missing bounds check (6.7 MEDIUM)
Same CWE
- CVE-2026-52720 — A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client) (8.8 HIGH)
- CVE-2025-55661 — A heap buffer overflow in the Opus audio stream parser component of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) ... (5.5 MEDIUM)
- CVE-2025-55652 — A heap buffer overflow in the gf_isom_vp_config_new function (isomedia/avc_ext.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial ... (5.5 MEDIUM)
- CVE-2025-55648 — A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cau... (5.5 MEDIUM)
- CVE-2025-55645 — A heap buffer overflow in the gf_cenc_set_pssh function (isomedia/drm_sample.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of... (5.5 MEDIUM)