Vulnerability Details CVE-2026-20419
In wlan AP/STA firmware, there is a possible system becoming irresponsive due to an uncaught exception. This could lead to remote (proximal/adjacent) denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00461663 / WCNCR00463309; Issue ID: MSV-4852.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.4%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-20419
-
cpe:2.3:a:mediatek:nbiot_sdk:2.8.1
-
cpe:2.3:a:mediatek:nbiot_sdk:3.6
-
cpe:2.3:a:mediatek:software_development_kit:2.4
-
cpe:2.3:a:mediatek:software_development_kit:2.5
-
cpe:2.3:a:mediatek:software_development_kit:3.3
-
cpe:2.3:a:mediatek:software_development_kit:3.5
-
cpe:2.3:a:mediatek:software_development_kit:3.6
-
cpe:2.3:a:mediatek:software_development_kit:3.7
-
cpe:2.3:a:mediatek:software_development_kit:5.0.5.0
-
cpe:2.3:a:mediatek:software_development_kit:5.1.0.0
-
cpe:2.3:a:mediatek:software_development_kit:7.4.0.1
-
cpe:2.3:a:mediatek:software_development_kit:7.6.7.0
-
cpe:2.3:a:mediatek:software_development_kit:7.6.7.2
-
cpe:2.3:h:mediatek:mt6890:-
-
cpe:2.3:h:mediatek:mt6989tb:-
-
cpe:2.3:h:mediatek:mt7902:-
-
cpe:2.3:h:mediatek:mt7915:-
-
cpe:2.3:h:mediatek:mt7916:-
-
cpe:2.3:h:mediatek:mt7920:-
-
cpe:2.3:h:mediatek:mt7921:-
-
cpe:2.3:h:mediatek:mt7922:-
-
cpe:2.3:h:mediatek:mt7925:-
-
cpe:2.3:h:mediatek:mt7927:-
-
cpe:2.3:h:mediatek:mt7981:-
-
cpe:2.3:h:mediatek:mt7986:-
-
cpe:2.3:h:mediatek:mt8196:-
-
cpe:2.3:h:mediatek:mt8668:-
-
cpe:2.3:h:mediatek:mt8676:-
-
cpe:2.3:h:mediatek:mt8678:-
-
cpe:2.3:h:mediatek:mt8775:-
-
cpe:2.3:h:mediatek:mt8791t:-
-
cpe:2.3:h:mediatek:mt8792:-
-
cpe:2.3:h:mediatek:mt8793:-
-
cpe:2.3:h:mediatek:mt8796:-
-
cpe:2.3:h:mediatek:mt8873:-
-
cpe:2.3:h:mediatek:mt8883:-
-
cpe:2.3:h:mediatek:mt8893:-
-
cpe:2.3:h:mediatek:mt8910:-
-
cpe:2.3:o:openwrt:openwrt:19.07.0
-
cpe:2.3:o:openwrt:openwrt:21.02.0