Volerion logoVolerion
Volerion logoVolerion

MediaTek Chipsets Out-of-Bounds Write Vulnerability in imgsensor Component

Vulnerability

A vulnerability allowing out-of-bounds write has been identified in the imgsensor component of certain MediaTek chipsets. This issue arises from a missing bounds check, which could lead to local privilege escalation for an actor with System privileges. Exploitation of this vulnerability does not require user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized modification of memory, potentially leading to arbitrary code execution or other forms of privilege escalation.

Remediation

MediaTek has issued a patch for this vulnerability, which can be applied by device OEMs. Instructions for accessing the patch are available through the MediaTek Product Security Bulletin.

Added: Oct 14, 2025, 10:26 AM
Updated: Oct 14, 2025, 2:23 PM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
7.5
exploitability
2.8
remediation
0.0
relevance
0.7
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.