Primary

Context

MediaTek Chipsets Display Component Out-of-Bounds Read Vulnerability Allowing Local Information Disclosure

Vulnerability

A vulnerability has been identified in the display component of certain MediaTek chipsets, including MT6991, MT6993, MT8196, MT8678, and MT8793. This vulnerability arises from a missing bounds check, which creates a potential for out-of-bounds read. If exploited, this could lead to local information disclosure, but requires the attacker to have already obtained system privileges. The vulnerability does not require user interaction for exploitation.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information, potentially leading to further exploitation of the affected system or application.

Remediation

MediaTek has issued a patch for this vulnerability, which can be applied by device manufacturers. For more information, OEMs can contact their MediaTek representative.

Added: Mar 2, 2026, 9:37 AM

Updated: Mar 2, 2026, 2:36 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

0.6

exploitability

2.8

remediation

7.7

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

0.6

exploitability

2.8

remediation

7.7

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

MediaTek Chipsets Display Component Out-of-Bounds Read Vulnerability Allowing Local Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

MediaTek MT6991

MediaTek MT6993

MediaTek MT8196

MediaTek MT8678

MediaTek MT8793

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating