Primary

Context

MediaTek WLAN AP Driver Out-of-Bounds Write Vulnerability Allowing Privilege Escalation

Vulnerability

A vulnerability in the WLAN Access Point (AP) driver of certain MediaTek chipsets allows for a possible out-of-bounds write. This issue arises from an incorrect bounds check, which could lead to remote (proximal/adjacent) escalation of privilege without the need for additional execution privileges or user interaction. Affected chipsets include MT6890, MT7916, MT7981, and MT7986.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation, allowing a user to gain elevated rights or access within the system.

Added: Oct 14, 2025, 10:35 AM

Updated: Oct 14, 2025, 2:32 PM

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MediaTek WLAN AP Driver Out-of-Bounds Write Vulnerability Allowing Privilege Escalation

Vulnerability

Impact

Affected Products

MediaTek MT6890

MediaTek MT7916

MediaTek MT7981

MediaTek MT7986

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating