Vulnerability Details CVE-2025-20740
In wlan STA driver, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00435337; Issue ID: MSV-4036.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.0%
CVSS Severity
CVSS v3 Score 4.7
Products affected by CVE-2025-20740
-
cpe:2.3:a:mediatek:software_development_kit:2.4
-
cpe:2.3:a:mediatek:software_development_kit:2.5
-
cpe:2.3:a:mediatek:software_development_kit:3.3
-
cpe:2.3:a:mediatek:software_development_kit:3.5
-
cpe:2.3:a:mediatek:software_development_kit:3.6
-
cpe:2.3:a:mediatek:software_development_kit:3.7
-
cpe:2.3:h:mediatek:mt7902:-
-
cpe:2.3:h:mediatek:mt7920:-
-
cpe:2.3:h:mediatek:mt7921:-
-
cpe:2.3:h:mediatek:mt7922:-
-
cpe:2.3:h:mediatek:mt7925:-
-
cpe:2.3:h:mediatek:mt7927:-