Primary

Context

MediaTek Chipsets imgsys Component Memory Corruption Vulnerability Leading to Local Denial-of-Service

Vulnerability

A memory corruption vulnerability has been identified in the imgsys component of certain MediaTek chipsets, including MT6897 and MT6989. This vulnerability arises from improper locking, which could allow a malicious actor with System privileges to cause a local denial-of-service. The issue does not require user interaction for exploitation.

Impact

Exploitation of this vulnerability can lead to memory corruption, causing a system crash or unresponsiveness.

Remediation

Device OEMs have been notified of this vulnerability and the corresponding security patches are available. For further information, OEMs can contact their MediaTek representative.

Added: Feb 2, 2026, 9:26 AM

Updated: Feb 2, 2026, 9:26 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MediaTek Chipsets imgsys Component Memory Corruption Vulnerability Leading to Local Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating