VYPR
Medium severity6.7NVD Advisory· Published Jun 6, 2023· Updated Jun 17, 2026

CVE-2023-20725

CVE-2023-20725

Description

In preloader, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only); Issue ID: ALPS07734004 / ALPS07874358 (For MT6880, MT6890, MT6980, MT6990 only).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • MediaTek, Inc./MT6580, MT6739, MT6761, MT6765, MT6768, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6853T, MT6855, MT6873, MT6877, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6893, MT6895, MT6980, MT6983, MT6985, MT6990, MT8167, MT8175, MT8195, MT8365, MT8385, MT8673, MT8781, MT8788, MT8789v5
    Range: Android 12.0, 13.0 / OpenWrt 19.07, 21.02 / RDK-B 2022Q3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.