MediaTek MT2735
0 remedies
cpe:2.3:h:mediatek:mt2735:*:*:*:*:*:*:*
0 remedies
MediaTek Modem Null Pointer Dereference Vulnerability Leading to Remote Denial-of-Service
Vulnerability
A null pointer dereference vulnerability has been identified in the MediaTek Modem, specifically in several chipsets including the MT2735, MT2737, and MT6833 series, among others. This vulnerability arises from a missing bounds check, which can cause a system crash. The issue can be exploited remotely, particularly when a user equipment (UE) is connected to a rogue base station controlled by an attacker. Notably, no additional execution privileges are required for exploitation, and user interaction is not needed.
Impact
Exploitation of this vulnerability can cause a system crash, leading to a remote denial-of-service condition.
Remediation
MediaTek has issued patches for this vulnerability, which can be applied by device manufacturers. Specific patch IDs are MOLY00791311 and MOLY01067019.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
2.5exploitability
4.7remediation
0.0relevance
0.0threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.