MediaTek MT6890
0 remedies
cpe:2.3:h:mediatek:mt6890:*:*:*:*:*:*:*, +1 more
0 remedies
- <= 5.1.0.0
- <= 19.07
- <= 21.02
MediaTek WLAN AP Driver Heap Overflow Vulnerability Allowing Remote Code Execution
Vulnerability
Patched
A heap overflow vulnerability has been identified in the MediaTek WLAN Access Point (AP) driver. This issue arises from an incorrect bounds check, leading to a possible out-of-bounds write. The vulnerability could be exploited to execute code remotely, with no additional execution privileges required. User interaction is not necessary for exploitation. The vulnerability affects several chipsets, including MT6890, MT7915, MT7916, MT7981, and MT7986, and is present in the SDK release 7.6.7.2 and earlier, as well as OpenWrt versions 19.07 and 21.02 (for MT6890).
Impact
Exploitation of this vulnerability could result in remote code execution on the affected device.
Added: Jul 8, 2025, 3:42 AM
Updated: Jul 8, 2025, 3:42 AM
Vulnerability Rating
Custom Algorithm
spread
8.1impact
7.5exploitability
4.9remediation
0.0relevance
0.2threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.