Volerion logoVolerion
Volerion logoVolerion

MediaTek Modem Stack Overflow Vulnerability Leading to Remote Denial-of-Service

Vulnerability

A stack overflow vulnerability has been identified in the modem component of certain MediaTek chipsets. This issue arises from improper input validation, which can lead to a system crash. The vulnerability can be exploited to cause a remote denial-of-service condition, particularly when a user equipment (UE) device is connected to a rogue base station controlled by an attacker. Notably, no additional execution privileges are required for exploitation, and user interaction is not needed.

Impact

Exploitation of this vulnerability can cause a system crash, leading to a denial-of-service condition where the device becomes unresponsive or unavailable.

Remediation

MediaTek has issued patches for this vulnerability, which can be applied by device manufacturers. For more information, OEMs can contact their MediaTek representative.

Added: Jan 6, 2026, 2:33 AM
Updated: Jan 6, 2026, 2:33 AM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
2.5
exploitability
4.7
remediation
0.0
relevance
1.9
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.