CVE-2025-20748
04.11.2025, 07:15
In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00432679; Issue ID: MSV-3950.
| Vendor | Product | Version |
|---|---|---|
| mediatek | software_development_kit | 𝑥 ≤ 7.6.7.2 |
| openwrt | openwrt | 19.07.0 |
| openwrt | openwrt | 21.02.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.