MediaTek MediaTek

  1. Vendors
  2. MediaTek

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in any MediaTek product.

RSS Feeds for MediaTek security vulnerabilities

Create a CVE RSS feed including security vulnerabilities found in MediaTek products with stack.watch. Just hit watch, then grab your custom RSS feed url.

Products by MediaTek Sorted by Most Security Vulnerabilities since 2018

MediaTek Mt698990 vulnerabilities

MediaTek Software Development Kit31 vulnerabilities

MediaTek Nr1626 vulnerabilities

MediaTek Nr1722 vulnerabilities

MediaTek Nr1520 vulnerabilities

MediaTek Iot Yocto16 vulnerabilities

MediaTek Mt685516 vulnerabilities

MediaTek Lr12a9 vulnerabilities

MediaTek Lr138 vulnerabilities

MediaTek Mt81967 vulnerabilities

MediaTek Mt67815 vulnerabilities

MediaTek Mt68355 vulnerabilities

MediaTek Nbiot Sdk4 vulnerabilities

MediaTek Mt99724 vulnerabilities

MediaTek Mt68954 vulnerabilities

MediaTek Mt68864 vulnerabilities

MediaTek Mt68794 vulnerabilities

MediaTek Nr17r4 vulnerabilities

MediaTek Mt68783 vulnerabilities

MediaTek Mt69853 vulnerabilities

MediaTek Mt69833 vulnerabilities

MediaTek Mt68973 vulnerabilities

MediaTek Mt87812 vulnerabilities

MediaTek Mt67892 vulnerabilities

MediaTek Mt86732 vulnerabilities

MediaTek Mt83902 vulnerabilities

MediaTek Mt83702 vulnerabilities

MediaTek Mt79251 vulnerability

MediaTek Mt87681 vulnerability

MediaTek Mt79271 vulnerability

MediaTek Mt8188t1 vulnerability

MediaTek Mt87981 vulnerability

MediaTek Software Package1 vulnerability

MediaTek Mt87971 vulnerability

MediaTek Mt8791t1 vulnerability

MediaTek Mt87891 vulnerability

MediaTek Mt87881 vulnerability

MediaTek Mt83211 vulnerability

MediaTek Mt87861 vulnerability

MediaTek Mt83951 vulnerability

MediaTek Mt86671 vulnerability

MediaTek Mt86761 vulnerability

MediaTek Mt86781 vulnerability

MediaTek Mt87651 vulnerability

MediaTek Mt87661 vulnerability

MediaTek Mt68531 vulnerability

MediaTek Lr111 vulnerability

MediaTek Lr151 vulnerability

MediaTek Mt27131 vulnerability

MediaTek Mt27181 vulnerability

MediaTek Mt67391 vulnerability

MediaTek Mt67531 vulnerability

MediaTek Mt67571 vulnerability

MediaTek Mt67611 vulnerability

MediaTek Mt67621 vulnerability

MediaTek Mt67631 vulnerability

MediaTek Mt67651 vulnerability

MediaTek Mt67681 vulnerability

MediaTek Mt67691 vulnerability

MediaTek Mt68331 vulnerability

MediaTek Mt79221 vulnerability

MediaTek Mt68731 vulnerability

MediaTek Mt68751 vulnerability

MediaTek Mt68771 vulnerability

MediaTek Mt68801 vulnerability

MediaTek Mt68811 vulnerability

MediaTek Mt68831 vulnerability

MediaTek Mt68851 vulnerability

MediaTek Mt68891 vulnerability

MediaTek Mt68901 vulnerability

MediaTek Mt68931 vulnerability

MediaTek Mt69901 vulnerability

MediaTek Mt79021 vulnerability

MediaTek Mt79201 vulnerability

MediaTek Mt79211 vulnerability

By the Year

In 2026 there have been 70 vulnerabilities in MediaTek with an average score of 6.8 out of ten. Last year, in 2025 MediaTek had 123 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in MediaTek in 2026 could surpass last years number. Last year, the average CVE base score was greater by 0.12




Year Vulnerabilities Average Score
2026 70 6.76
2025 123 6.88
2024 32 7.58
2023 18 6.78
2022 2 8.65

It may take a day or so for new MediaTek vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent MediaTek Security Vulnerabilities

CVE Date Vulnerability Products
CVE-2026-20416 Mar 02, 2026
MediaTek PCIe Driver OOB Write Escalation In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315038 / ALPS10340155; Issue ID: MSV-5155.
CVE-2026-20445 Mar 02, 2026
MediaTek MDDP race condition may crash system (local DoS) In MDDP, there is a possible system crash due to a race condition. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10289875; Issue ID: MSV-5184.
Mt6989
CVE-2026-20429 Mar 02, 2026
Out of Bounds Read in MediaTek Display Driver Enables Local Info Disclosure In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5535.
Mt6989
CVE-2026-20424 Mar 02, 2026
OOB Read in Mediatek Display Driver (Local Info Disclosure) In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5540.
Mt8196
CVE-2026-20444 Mar 02, 2026
Mediatek Display Driver LPE via Bounds Check Overflow In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436995; Issue ID: MSV-5721.
Mt6989
CVE-2026-20443 Mar 02, 2026
MediaTek Display Driver Use-After-Free Enables Local Priv Escalation In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5722.
Mt6989
CVE-2026-20442 Mar 02, 2026
MediaTek Display Driver UAF: Local DoS via Use-After-Free In display, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5723.
Mt6989
CVE-2026-20441 Mar 02, 2026
MediaTek MAE OOB Write Escalates Local Privileges In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803.
CVE-2026-20440 Mar 02, 2026
CVE-2026-20440: OOB Write in MediaTek MAE for local privilege escalation In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10431968; Issue ID: MSV-5824.
CVE-2026-20439 Mar 02, 2026
MediaTek imgsys Use-After-Free causes local Denial-of-Service In imgsys, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10431955; Issue ID: MSV-5826.
CVE-2026-20438 Mar 02, 2026
MAE OOB Write Race Local Escalation (MediaTek) In MAE, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10431920; Issue ID: MSV-5835.
CVE-2026-20437 Mar 02, 2026
MediaTek MAE Use-After-Free Leads to Local DoS (CVE-2026-20437) In MAE, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10431940; Issue ID: MSV-5843.
CVE-2026-20436 Mar 02, 2026
Privilege Escalation in MediaTek WLAN STA Driver via Bounds Check In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00473802; Issue ID: MSV-5970.
CVE-2026-20435 Mar 02, 2026
MediaTek Preloader Local Info Disclosure via UID Exposure In preloader, there is a possible read of device unique identifiers due to a logic error. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS10607099; Issue ID: MSV-6118.
Mt6989
CVE-2026-20434 Mar 02, 2026
Out-of-bounds write in MediaTek Modem firmware leads to privilege escalation In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY00782946; Issue ID: MSV-4135.
Mt6989
CVE-2026-20430 Mar 02, 2026
MediaTek WLAN AP FW OOB Write Escalation In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00467553; Issue ID: MSV-5151.
CVE-2026-20428 Mar 02, 2026
MediaTek Display Driver OOB Write Local Privilege Escalation In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5536.
Mt6989
CVE-2026-20427 Mar 02, 2026
MediaTek Display Driver Priv Escalation via Bounds Check In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5537.
Mt6989
CVE-2026-20426 Mar 02, 2026
MediaTek Display Driver OOB Write Enables Local PrivEsc In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5538.
Mt6989
CVE-2026-20425 Mar 02, 2026
MediaTek Display Driver OOB Write Escalation In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539.
Mt6989
CVE-2026-20423 Mar 02, 2026
Local Priv Esc in MediaTek WLAN STA Driver via OOB Write In wlan STA driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00465314; Issue ID: MSV-4956.
CVE-2026-20419 Feb 02, 2026
Uncaught Exception in WLAN AP/STA Firmware Enables Remote DoS In wlan AP/STA firmware, there is a possible system becoming irresponsive due to an uncaught exception. This could lead to remote (proximal/adjacent) denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00461663 / WCNCR00463309; Issue ID: MSV-4852.
Mt6989
CVE-2026-20418 Feb 02, 2026
W C vuln: OOB write in Windows Thread remote PrivEsc In Thread, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00465153; Issue ID: MSV-4927.
CVE-2026-20417 Feb 02, 2026
MS Windows PCIe Driver OOB Write PrivEsc In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10314946 / ALPS10340155; Issue ID: MSV-5154.
CVE-2026-20415 Feb 02, 2026
Microsoft imgsys Local DS via Improper Locking In imgsys, there is a possible memory corruption due to improper locking. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363254; Issue ID: MSV-5617.
Mt6989
CVE-2026-20414 Feb 02, 2026
Local PrivEsc via UAF in imgsys (CVE-2026-20414) In imgsys, there is a possible escalation of privilege due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10362999; Issue ID: MSV-5625.
Mt6989
CVE-2026-20413 Feb 02, 2026
Windows imgsys OOB Write LPE (System) In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10362725; Issue ID: MSV-5694.
CVE-2026-20412 Feb 02, 2026
Local Escalation via OOB Write in cameraisp (Windows) In cameraisp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5733.
Mt6989
CVE-2026-20411 Feb 02, 2026
MediaTek cameraisp Use-After-Free Priv Escalation (CVE-2026-20411) In cameraisp, there is a possible escalation of privilege due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5737.
Mt6989
Mt6878
Mt6879
And others...
CVE-2026-20410 Feb 02, 2026
MediaTek Imgsys OOB Write Priv Esc In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10362552; Issue ID: MSV-5760.
Mt6989
Mt6897
Mt8370
And others...
CVE-2026-20409 Feb 02, 2026
MediaTek imgsys OOB Write in imgsys Leads to Local Priv Escalation In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363246; Issue ID: MSV-5779.
Mt6989
CVE-2026-20408 Feb 02, 2026
MediaTek WLAN FW heap overflow remote privilege escalation In wlan, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00461651; Issue ID: MSV-4758.
CVE-2026-20407 Feb 02, 2026
MediaTek WLAN STA Driver Privilege Escalation via Bounds Check In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00464377; Issue ID: MSV-4905.
Mt7902
Mt7920
Mt7921
And others...
CVE-2026-20406 Feb 02, 2026
Mediatek Modem Uncaught Exception Allows Remote DoS (CVE-2026-20406) In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01726634; Issue ID: MSV-5728.
Mt6989
CVE-2026-20405 Feb 02, 2026
MediaTek Modem Remote DoS via Missing Bounds Check In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01688495; Issue ID: MSV-4818.
Mt6989
CVE-2026-20404 Feb 02, 2026
MediaTek Modem Remote DoS via Improper Input Validation In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01689248; Issue ID: MSV-4837.
Mt6989
CVE-2026-20403 Feb 02, 2026
MediaTek Modem BoC Remote DoS (CVE-2026-20403) In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01689254 (Note: For N15 and NR16) / MOLY01689259 (Note: For NR17 and NR17R); Issue ID: MSV-4843.
Mt6989
CVE-2026-20422 Feb 02, 2026
MediaTek Modem Input Validation Flaw Causing RDoS (CVE-2026-20422) In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00827332; Issue ID: MSV-5919.
Mt6989
CVE-2026-20421 Feb 02, 2026
MediaTek Modem Remote DoS via Input Validation Crash In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01738293; Issue ID: MSV-5922.
Mt6855
CVE-2026-20402 Feb 02, 2026
Remote DoS via Improper Input Validation in MediaTek Modem In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00693083; Issue ID: MSV-5928.
Mt6855
CVE-2026-20401 Feb 02, 2026
Remote DoS via Uncaught Exception in MediaTek Modem In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01738310; Issue ID: MSV-5933.
Mt6855
CVE-2026-20420 Feb 02, 2026
MediaTek Modem Firmware DoS via Error Handling Crash In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01738313; Issue ID: MSV-5935.
Mt6989
CVE-2025-20807 Jan 06, 2026
MediaTek DPE OOB Write via Int Overflow Local Priv Escalation In dpe, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114841; Issue ID: MSV-4451.
CVE-2025-20806 Jan 06, 2026
MediaTek dpe Use-After-Free Memory Corruption Local Privilege Escalation In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114835; Issue ID: MSV-4479.
CVE-2025-20805 Jan 06, 2026
MediaTek DPE UAF Memory Corruption Priv Esc In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10114696; Issue ID: MSV-4480.
CVE-2025-20804 Jan 06, 2026
MediaTek DPE Use-After-Free Exploitable for Local Priv Escalation In dpe, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10198951; Issue ID: MSV-4503.
CVE-2025-20803 Jan 06, 2026
MediaTek dpe Integer Overflow Local PrivEsc In dpe, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID: ALPS10199779; Issue ID: MSV-4504.
CVE-2025-20787 Jan 06, 2026
MediaTek Display Driver UAF leads to local privilege escalation In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149879; Issue ID: MSV-4658.
Mt6989
CVE-2025-20786 Jan 06, 2026
Use-After-Free in MediaTek Display Driver Enables Local Priv Escalation In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4673.
Mt6989
CVE-2025-20785 Jan 06, 2026
MediaTek Display Driver Use-After-Free Enables Local Priv Esc In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4677.
Mt6989
Built by Foundeo Inc., with data from the National Vulnerability Database (NVD). Privacy Policy. Use of this site is governed by the Legal Terms
Disclaimer
CONTENT ON THIS WEBSITE IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. Always check with your vendor for the most up to date, and accurate information.