Volerion logoVolerion
Volerion logoVolerion

MediaTek Modem Heap Buffer Overflow Vulnerability Leading to Remote Denial-of-Service

Vulnerability

A heap buffer overflow vulnerability has been identified in the Modem component of certain MediaTek chipsets. This vulnerability can cause a system crash and, if a user equipment (UE) device is connected to a rogue base station controlled by an attacker, it could lead to remote denial-of-service. The vulnerability does not require any additional execution privileges or user interaction for exploitation.

Impact

Exploitation of this vulnerability can cause a system crash, leading to a denial-of-service condition on the affected device.

Remediation

MediaTek has issued a patch for this vulnerability, which is available to device OEMs. Instructions for applying the patch can be obtained through the MediaTek contact person.

Added: May 4, 2026, 7:40 AM
Updated: May 4, 2026, 7:40 AM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
2.5
exploitability
4.7
remediation
7.7
relevance
7.4
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.