Volerion logoVolerion
Volerion logoVolerion

MediaTek Modem Improper Input Validation Leading to Remote Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the MediaTek Modem component of several chipsets, including MT2735, MT6833, MT6833P, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6880, MT6883, MT6885, MT6889, MT6890, MT6891, MT6893, MT8791T, and MT8797. This vulnerability arises from improper input validation, which can lead to a system crash. The issue can be exploited remotely if a user equipment (UE) device is connected to a rogue base station controlled by an attacker. Notably, no additional execution privileges are required for exploitation, and user interaction is not needed.

Impact

Exploitation of this vulnerability can cause a system crash, leading to a denial-of-service condition on the affected device.

Remediation

A patch for this vulnerability is available, identified by Patch ID: MOLY01717526.

Added: Dec 2, 2025, 3:54 AM
Updated: Dec 2, 2025, 3:54 AM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
2.5
exploitability
4.7
remediation
0.0
relevance
1.2
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.