Volerion logoVolerion
Volerion logoVolerion

MediaTek V5 DA Out-of-Bounds Read Vulnerability Allowing Local Information Disclosure

Vulnerability

A vulnerability exists in the V5 DA component of certain MediaTek chipsets, where a missing bounds check can lead to an out-of-bounds read. This issue could allow local information disclosure if an attacker has physical access to the device, without requiring any additional execution privileges. Exploitation of this vulnerability also necessitates user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized local access to sensitive information.

Remediation

MediaTek has issued a patch for this vulnerability, identified by Patch ID ALPS09291215. Instructions for applying this patch can be obtained from the device OEM.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
0.6
exploitability
4.7
remediation
7.9
relevance
0.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.