MediaTek MT2735
Moderate fix1 remedy
cpe:2.3:h:mediatek:mt2735:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
- >= MT2735, <= MT2735
MediaTek Modem Null Pointer Dereference Vulnerability Leading to Remote Denial-of-Service
Vulnerability
A null pointer dereference vulnerability has been identified in the MediaTek Modem, specifically in chipsets MT2735, MT6833, MT6833P, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6880, MT6883, MT6885, MT6889, MT6890, MT6891, MT6893, MT8791T, MT8797. This vulnerability arises from improper input validation, which can lead to a system crash. The issue could be exploited remotely if a user equipment (UE) is connected to a rogue base station controlled by an attacker. Notably, no additional execution privileges are required for exploitation, and user interaction is not needed.
Impact
Exploitation of this vulnerability can cause a system crash, leading to a denial-of-service condition on the affected device.
Remediation
MediaTek has issued a patch for this vulnerability, which can be applied by device manufacturers. The patch ID is MOLY01677581.
Added: Dec 2, 2025, 3:56 AM
Updated: Dec 2, 2025, 3:56 AM
Vulnerability Rating
Custom Algorithm
spread
7.8impact
2.5exploitability
4.7remediation
7.7relevance
1.3threat
0.0urgency
2.9incentive
0.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.