CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-20414

In imgsys, there is a possible escalation of privilege due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10362999; Issue ID: MSV-5625.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.4%

CVSS Severity

CVSS v3 Score 6.7

References

https://corp.mediatek.com/product-security-bulletin/February-2026

Products affected by CVE-2026-20414

Mediatek » Mt6897 » Version: N/A

cpe:2.3:h:mediatek:mt6897:-
Mediatek » Mt6989 » Version: N/A

cpe:2.3:h:mediatek:mt6989:-
Mediatek » Mt8196 » Version: N/A

cpe:2.3:h:mediatek:mt8196:-
Mediatek » Mt8678 » Version: N/A

cpe:2.3:h:mediatek:mt8678:-
Mediatek » Mt8766 » Version: N/A

cpe:2.3:h:mediatek:mt8766:-
Mediatek » Mt8768 » Version: N/A

cpe:2.3:h:mediatek:mt8768:-
Mediatek » Mt8786 » Version: N/A

cpe:2.3:h:mediatek:mt8786:-
Mediatek » Mt8796 » Version: N/A

cpe:2.3:h:mediatek:mt8796:-
Google » Android » Version: 15.0

cpe:2.3:o:google:android:15.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-20414

Products

Pricing

Contact Us