CVE-2025-20741
EUVD-2025-3755504.11.2025, 07:15
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00434422; Issue ID: MSV-3958.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| mediatek | software_development_kit | 𝑥 ≤ 7.6.7.2 |
| openwrt | openwrt | 19.07.0 |
| openwrt | openwrt | 21.02.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-122 - Heap-based Buffer OverflowA heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.