CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-20417

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10314946 / ALPS10340155; Issue ID: MSV-5154.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.5%

CVSS Severity

CVSS v3 Score 5.3

References

https://corp.mediatek.com/product-security-bulletin/February-2026

Products affected by CVE-2026-20417

Mediatek » Mt6991 » Version: N/A

cpe:2.3:h:mediatek:mt6991:-
Mediatek » Mt6993 » Version: N/A

cpe:2.3:h:mediatek:mt6993:-
Mediatek » Mt8678 » Version: N/A

cpe:2.3:h:mediatek:mt8678:-
Google » Android » Version: 15.0

cpe:2.3:o:google:android:15.0
Google » Android » Version: 16.0

cpe:2.3:o:google:android:16.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-20417

Products

Pricing

Contact Us