Volerion logoVolerion
Volerion logoVolerion

MediaTek Modem Uncaught Exception Vulnerability Leading to Remote Denial-of-Service

Vulnerability

A denial-of-service vulnerability has been identified in the modem component of certain MediaTek chipsets. This issue arises from an uncaught exception, which can cause a system crash. The vulnerability can be exploited remotely if a user equipment (UE) device is connected to a rogue base station controlled by an attacker. Notably, no additional execution privileges are required for exploitation, and user interaction is not needed.

Impact

Exploitation of this vulnerability can cause a system crash, leading to a denial-of-service condition where the device becomes unresponsive or unavailable.

Remediation

MediaTek has issued a patch for this vulnerability, which can be applied by device manufacturers. The patch ID is MOLY01738310.

Added: Feb 2, 2026, 9:40 AM
Updated: Feb 2, 2026, 9:40 AM

Vulnerability Rating

Custom Algorithm
spread
7.8
impact
3.3
exploitability
4.3
remediation
0.0
relevance
2.4
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.