MediaTek MT2735
0 remedies
cpe:2.3:h:mediatek:mt2735:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
Primary
Context
MediaTek Chipsets ims Service Out-of-Bounds Write Vulnerability Allowing Privilege Escalation
Vulnerability
A vulnerability has been identified in the ims service of certain MediaTek chipsets, where a missing bounds check could lead to an out-of-bounds write. This flaw has the potential to be exploited for remote privilege escalation, particularly if a user equipment (UE) device connects to a rogue base station controlled by an attacker. Notably, no additional execution privileges are required for exploitation, and user interaction is not needed.
Impact
Exploitation of this vulnerability could result in unauthorized privilege escalation on the affected device.
Remediation
Device OEMs have been notified of this vulnerability and the corresponding security patches are available. For further information, OEMs can contact their MediaTek representative.
Added: Nov 4, 2025, 7:52 AM
Updated: Nov 4, 2025, 7:52 AM
Affected Products
MediaTek MT2737
0 remedies
cpe:2.3:h:mediatek:mt2737:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6739
0 remedies
cpe:2.3:h:mediatek:mt6739:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6761
0 remedies
cpe:2.3:h:mediatek:mt6761:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6762
0 remedies
cpe:2.3:h:mediatek:mt6762:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6762D
0 remedies
cpe:2.3:h:mediatek:mt6762d:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6762M
0 remedies
cpe:2.3:h:mediatek:mt6762m:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6763
0 remedies
cpe:2.3:h:mediatek:mt6763:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6765
0 remedies
cpe:2.3:h:mediatek:mt6765:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6765T
0 remedies
cpe:2.3:h:mediatek:mt6765t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6767
0 remedies
cpe:2.3:h:mediatek:mt6767:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6768
0 remedies
cpe:2.3:h:mediatek:mt6768:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6769
0 remedies
cpe:2.3:h:mediatek:mt6769:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6769K
0 remedies
cpe:2.3:h:mediatek:mt6769k:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6769S
0 remedies
cpe:2.3:h:mediatek:mt6769s:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6769T
0 remedies
cpe:2.3:h:mediatek:mt6769t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6769Z
0 remedies
cpe:2.3:h:mediatek:mt6769z:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6771
0 remedies
cpe:2.3:h:mediatek:mt6771:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6813
0 remedies
cpe:2.3:h:mediatek:mt6813:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6833
0 remedies
cpe:2.3:h:mediatek:mt6833:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6833P
0 remedies
cpe:2.3:h:mediatek:mt6833p:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6835
0 remedies
cpe:2.3:h:mediatek:mt6835:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6835T
0 remedies
cpe:2.3:h:mediatek:mt6835t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6853
0 remedies
cpe:2.3:h:mediatek:mt6853:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6853T
0 remedies
cpe:2.3:h:mediatek:mt6853t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6855
0 remedies
cpe:2.3:h:mediatek:mt6855:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6855T
0 remedies
cpe:2.3:o:mediatek:mt6855t_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6873
0 remedies
cpe:2.3:h:mediatek:mt6873:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6875
0 remedies
cpe:2.3:h:mediatek:mt6875:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6875T
0 remedies
cpe:2.3:h:mediatek:mt6875t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6877
0 remedies
cpe:2.3:h:mediatek:mt6877:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6877T
0 remedies
cpe:2.3:o:mediatek:mt6877t_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6877TT
0 remedies
cpe:2.3:h:mediatek:mt6877tt:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6878
0 remedies
cpe:2.3:o:mediatek:mt6878_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6878M
0 remedies
cpe:2.3:o:mediatek:mt6878m_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6879
0 remedies
cpe:2.3:h:mediatek:mt6879:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6880
0 remedies
cpe:2.3:h:mediatek:mt6880:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6883
0 remedies
cpe:2.3:h:mediatek:mt6883:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6885
0 remedies
cpe:2.3:h:mediatek:mt6885:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6886
0 remedies
cpe:2.3:o:mediatek:mt6886_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6889
0 remedies
cpe:2.3:h:mediatek:mt6889:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6890
0 remedies
cpe:2.3:h:mediatek:mt6890:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6891
0 remedies
cpe:2.3:h:mediatek:mt6891:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6893
0 remedies
cpe:2.3:h:mediatek:mt6893:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6895
0 remedies
cpe:2.3:h:mediatek:mt6895:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6895TT
0 remedies
cpe:2.3:h:mediatek:mt6895tt:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6896
0 remedies
cpe:2.3:h:mediatek:mt6896:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6897
0 remedies
cpe:2.3:o:mediatek:mt6897_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6899
0 remedies
cpe:2.3:o:mediatek:mt6899_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6980
0 remedies
cpe:2.3:h:mediatek:mt6980:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6980D
0 remedies
cpe:2.3:h:mediatek:mt6980d:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6983
0 remedies
cpe:2.3:o:mediatek:mt6983_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6983T
0 remedies
cpe:2.3:h:mediatek:mt6983t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6985
0 remedies
cpe:2.3:o:mediatek:mt6985_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6985T
0 remedies
cpe:2.3:o:mediatek:mt6985t_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6989
0 remedies
cpe:2.3:o:mediatek:mt6989_firmware:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT6989T
0 remedies
cpe:2.3:h:mediatek:mt6989t:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6990
0 remedies
cpe:2.3:h:mediatek:mt6990:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT6991
0 remedies
cpe:2.3:h:mediatek:mt6991:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8666
0 remedies
cpe:2.3:h:mediatek:mt8666:*:*:*:*:*:*:*
0 remedies
MediaTek MT8667
0 remedies
cpe:2.3:h:mediatek:mt8666b:*:*:*:*:*:*:*, +1 more
0 remedies
MediaTek MT8673
0 remedies
cpe:2.3:h:mediatek:mt8667:*:*:*:*:*:*:*
0 remedies
MediaTek MT8675
0 remedies
cpe:2.3:h:mediatek:mt8673:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8676
0 remedies
cpe:2.3:h:mediatek:mt8675:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8678
0 remedies
cpe:2.3:h:mediatek:mt8676:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8765
0 remedies
cpe:2.3:h:mediatek:mt8678:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8766
0 remedies
cpe:2.3:h:mediatek:mt8765:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8766R
0 remedies
cpe:2.3:h:mediatek:mt8766:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8768
0 remedies
cpe:2.3:h:mediatek:mt8766r:*:*:*:*:*:*:*
0 remedies
MediaTek MT8771
0 remedies
cpe:2.3:h:mediatek:mt8768:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8786
0 remedies
cpe:2.3:h:mediatek:mt8771:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8788
0 remedies
cpe:2.3:h:mediatek:mt8786:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8788E
0 remedies
cpe:2.3:o:mediatek:mt8788_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8791
0 remedies
cpe:2.3:h:mediatek:mt8788e:*:*:*:*:*:*:*
0 remedies
MediaTek MT8791T
0 remedies
cpe:2.3:h:mediatek:mt8791:*:*:*:*:*:*:*
0 remedies
- >= 1, <= 1
MediaTek MT8792
0 remedies
cpe:2.3:h:mediatek:mt8792:*:*:*:*:*:*:*
0 remedies
MediaTek MT8793
0 remedies
0 remedies
- >= 1, <= 1
MediaTek MT8795T
0 remedies
cpe:2.3:h:mediatek:mt8795t:*:*:*:*:*:*:*
0 remedies
MediaTek MT8797
0 remedies
cpe:2.3:h:mediatek:mt8797:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8798
0 remedies
cpe:2.3:h:mediatek:mt8798:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8863
0 remedies
cpe:2.3:h:mediatek:mt8863:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT8873
0 remedies
cpe:2.3:h:mediatek:mt8871:*:*:*:*:*:*:*
0 remedies
MediaTek MT8883
0 remedies
0 remedies
MediaTek MT8893
0 remedies
cpe:2.3:h:mediatek:mt8893:*:*:*:*:*:*:*, +1 more
0 remedies
MediaTek MT7902
0 remedies
cpe:2.3:o:mediatek:mt7902_firmware:*:*:*:*:*:*:*, +1 more
0 remedies
MediaTek MT7920
0 remedies
cpe:2.3:h:mediatek:mt7920:*:*:*:*:*:*:*
0 remedies
MediaTek MT7921
0 remedies
cpe:2.3:h:mediatek:mt7921:*:*:*:*:*:*:*, +1 more
0 remedies
- >= 1, <= 1
MediaTek MT7922
0 remedies
cpe:2.3:h:mediatek:mt7922:*:*:*:*:*:*:*
0 remedies
MediaTek MT7925
0 remedies
cpe:2.3:h:mediatek:mt7925:*:*:*:*:*:*:*
0 remedies
MediaTek MT7927
0 remedies
cpe:2.3:h:mediatek:mt7927:*:*:*:*:*:*:*
0 remedies
MediaTek MT8188
0 remedies
cpe:2.3:h:mediatek:mt8188:*:*:*:*:*:*:*
0 remedies
MediaTek MT8718
0 remedies
0 remedies
MediaTek MT6781
0 remedies
cpe:2.3:h:mediatek:mt6781:*:*:*:*:*:*:*
0 remedies
MediaTek MT6789
0 remedies
cpe:2.3:h:mediatek:mt6789:*:*:*:*:*:*:*
0 remedies
MediaTek MT6878
0 remedies
cpe:2.3:h:mediatek:mt6878:*:*:*:*:*:*:*
0 remedies
MediaTek MT6886
0 remedies
cpe:2.3:h:mediatek:mt6886:*:*:*:*:*:*:*
0 remedies
MediaTek MT6897
0 remedies
cpe:2.3:h:mediatek:mt6897:*:*:*:*:*:*:*
0 remedies
MediaTek MT6899
0 remedies
cpe:2.3:h:mediatek:mt6899:*:*:*:*:*:*:*
0 remedies
MediaTek MT6983
0 remedies
cpe:2.3:h:mediatek:mt6983:*:*:*:*:*:*:*
0 remedies
MediaTek MT6985
0 remedies
cpe:2.3:h:mediatek:mt6985:*:*:*:*:*:*:*
0 remedies
MediaTek MT6989
0 remedies
cpe:2.3:h:mediatek:mt6989:*:*:*:*:*:*:*
0 remedies
MediaTek MT8169
0 remedies
cpe:2.3:h:mediatek:mt8169:*:*:*:*:*:*:*
0 remedies
MediaTek MT8195
0 remedies
cpe:2.3:h:mediatek:mt8195:*:*:*:*:*:*:*
0 remedies
MediaTek MT8196
0 remedies
cpe:2.3:h:mediatek:mt8196:*:*:*:*:*:*:*
0 remedies
MediaTek MT8781
0 remedies
cpe:2.3:h:mediatek:mt8781:*:*:*:*:*:*:*
0 remedies
References
https://corp.mediatek.com/product-security-bulletin/November-2025
AdvisoryBundleVendor
Showing 1-1 of 1 references
Vulnerability Rating
Custom Algorithm
spread
8.4impact
5.0exploitability
4.4remediation
0.0relevance
0.9threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
Vulnerability Rating
Custom Algorithm
spread
8.4impact
5.0exploitability
4.4remediation
0.0relevance
0.9threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.