MediaTek MT6835
0 remedies
cpe:2.3:h:mediatek:mt6835:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1.0, < 1.0
MediaTek Chipsets GNSS Driver Integer Overflow Vulnerability Allowing Local Information Disclosure
Vulnerability
A vulnerability has been identified in the GNSS driver of certain MediaTek chipsets, where an integer overflow can lead to an out-of-bounds read. This issue could result in local information disclosure, but requires that the malicious actor has already obtained system privileges. The vulnerability arises from an incorrect bounds check, allowing for potential exploitation without user interaction.
Impact
Exploitation of this vulnerability could lead to unauthorized access to sensitive information, potentially allowing for further exploitation of the affected system or application.
Remediation
Device OEMs have been notified of this vulnerability and the corresponding security patches are available. For further information, OEMs can contact their MediaTek representative.
Added: Oct 14, 2025, 10:25 AM
Updated: Oct 14, 2025, 2:22 PM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
2.5exploitability
2.8remediation
0.0relevance
0.7threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.