CVE-2026-20449 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2026-20449

Analyzed

More Info Official Page

Source-security@mediatek.com

Published At-04 May, 2026 | 07:15

Updated At-07 May, 2026 | 12:43

In Modem, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01760138; Issue ID: MSV-6148.

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CPE Matches

>>mt6763_firmware>>-

cpe:2.3:o:mediatek:mt6763_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6763:-:*:*:*:*:*:*:*

>>mt6765_firmware>>-

cpe:2.3:o:mediatek:mt6765_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:*

>>mt6767_firmware>>-

cpe:2.3:o:mediatek:mt6767_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6767:-:*:*:*:*:*:*:*

>>mt6768_firmware>>-

cpe:2.3:o:mediatek:mt6768_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:*

>>mt6769_firmware>>-

cpe:2.3:o:mediatek:mt6769_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6769:-:*:*:*:*:*:*:*

>>mt6771_firmware>>-

cpe:2.3:o:mediatek:mt6771_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*

>>mt6779_firmware>>-

cpe:2.3:o:mediatek:mt6779_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*

>>mt6781_firmware>>-

cpe:2.3:o:mediatek:mt6781_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*

>>mt6783_firmware>>-

cpe:2.3:o:mediatek:mt6783_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6783:-:*:*:*:*:*:*:*

>>mt6785_firmware>>-

cpe:2.3:o:mediatek:mt6785_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*

>>mt6789_firmware>>-

cpe:2.3:o:mediatek:mt6789_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:*

>>mt6813_firmware>>-

cpe:2.3:o:mediatek:mt6813_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6813:-:*:*:*:*:*:*:*

>>mt6815_firmware>>-

cpe:2.3:o:mediatek:mt6815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6815:-:*:*:*:*:*:*:*

>>mt6833_firmware>>-

cpe:2.3:o:mediatek:mt6833_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*

>>mt6835_firmware>>-

cpe:2.3:o:mediatek:mt6835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:*

>>mt6853_firmware>>-

cpe:2.3:o:mediatek:mt6853_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*

>>mt6855_firmware>>-

cpe:2.3:o:mediatek:mt6855_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*

>>mt6858_firmware>>-

cpe:2.3:o:mediatek:mt6858_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6858:-:*:*:*:*:*:*:*

>>mt6873_firmware>>-

cpe:2.3:o:mediatek:mt6873_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*

>>mt6875_firmware>>-

cpe:2.3:o:mediatek:mt6875_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*

>>mt6877_firmware>>-

cpe:2.3:o:mediatek:mt6877_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*

>>mt6878_firmware>>-

cpe:2.3:o:mediatek:mt6878_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*

>>mt6879_firmware>>-

cpe:2.3:o:mediatek:mt6879_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*

>>mt6880_firmware>>-

cpe:2.3:o:mediatek:mt6880_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6880:-:*:*:*:*:*:*:*

>>mt6883_firmware>>-

cpe:2.3:o:mediatek:mt6883_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-120	Secondary	security@mediatek.com

CWE ID: CWE-120

Type: Secondary

Source: security@mediatek.com

References

Hyperlink	Source	Resource
https://corp.mediatek.com/product-security-bulletin/May-2026	security@mediatek.com	Vendor Advisory

Hyperlink: https://corp.mediatek.com/product-security-bulletin/May-2026

Source: security@mediatek.com

Resource:

Vendor Advisory