Volerion logoVolerion
Volerion logoVolerion

MediaTek Chipsets Out-of-Bounds Write Vulnerability in Secmem Component Allowing Privilege Escalation

Vulnerability

A vulnerability has been identified in the secmem component of various MediaTek chipsets, where a missing bounds check could lead to an out-of-bounds write. This vulnerability allows for local escalation of privilege, but requires that the malicious actor has already obtained System privileges. The issue does not require user interaction for exploitation. Affected chipsets include MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6983, MT6985, MT8321, MT8385, MT8666, MT8667, MT8673, MT8755, MT8765, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8795T, MT8796, MT8797, MT8798

Impact

Exploitation of this vulnerability could lead to unauthorized local privilege escalation, allowing a user with System privileges to gain elevated rights or access within the operating system or application environment.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
2.5
exploitability
2.8
remediation
0.0
relevance
0.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.