Volerion logoVolerion
Volerion logoVolerion

MediaTek Chipsets Out-of-Bounds Read Vulnerability in APU Component Allowing Local Information Disclosure

Vulnerability

A out-of-bounds read vulnerability has been identified in the APU component of certain MediaTek chipsets. This issue arises from a missing bounds check, which could lead to local information disclosure. The vulnerability does not require any additional execution privileges for exploitation, and user interaction is not needed. Affected chipsets include MT2718, MT6879, MT6989, MT8196, MT8370, MT8390, MT8395, MT8673, and MT8678. The vulnerability is present in software versions Android 13.0, 14.0, and 15.0.

Impact

Exploitation of this vulnerability could result in unauthorized local access to sensitive information.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
6.6
impact
0.6
exploitability
3.3
remediation
0.0
relevance
0.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.