MediaTek MT6890
Moderate fix1 remedy
cpe:2.3:h:mediatek:mt6890:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
MediaTek WLAN AP Driver Stack Overflow Vulnerability Allowing Privilege Escalation
Vulnerability
A stack overflow vulnerability has been identified in the WLAN access point driver of certain MediaTek chipsets. This issue arises from an incorrect bounds check, leading to a possible out-of-bounds write. Exploitation of this vulnerability could allow local escalation of privileges, although it requires user execution privileges. Notably, user interaction is not needed for exploitation.
Impact
Exploitation of this vulnerability could result in a stack overflow, potentially allowing for arbitrary code execution or manipulation of the execution flow.
Remediation
MediaTek has issued a patch for this vulnerability, which can be applied by device OEMs. Instructions for accessing the patch are available through the MediaTek Product Security Bulletin.
Added: Oct 14, 2025, 10:29 AM
Updated: Oct 14, 2025, 2:25 PM
Vulnerability Rating
Custom Algorithm
spread
8.1impact
7.5exploitability
3.5remediation
7.7relevance
0.7threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.