Volerion logoVolerion
Volerion logoVolerion

MediaTek WLAN STA Driver Out-of-Bounds Write Vulnerability Allowing Remote Code Execution

Vulnerability

A vulnerability exists in the WLAN Station (STA) firmware of certain MediaTek chipsets, where improper input validation can lead to an out-of-bounds write. This vulnerability could be exploited to execute code remotely (or from an adjacent position) without requiring additional execution privileges. Exploitation does not need user interaction.

Impact

Successful exploitation allows for remote code execution in the context of the WLAN STA driver.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
7.5
exploitability
4.7
remediation
6.0
relevance
0.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.