MediaTek Lr12a
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in MediaTek Lr12a.
By the Year
In 2026 there have been 0 vulnerabilities in MediaTek Lr12a. Last year, in 2025 Lr12a had 3 security vulnerabilities published. Right now, Lr12a is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 3 | 6.50 |
| 2024 | 3 | 0.00 |
| 2023 | 2 | 8.15 |
| 2022 | 1 | 7.50 |
It may take a day or so for new Lr12a vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent MediaTek Lr12a Security Vulnerabilities
IMS Service Crash Vulnerability Allows Remote DoS via Rogue Base Station
CVE-2025-20678
6.5 - Medium
- June 02, 2025
In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01394606; Issue ID: MSV-2739.
Stack Exhaustion
Modem IE via error handling in rogue base station
CVE-2025-20667
6.5 - Medium
- May 05, 2025
In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01513293; Issue ID: MSV-2741.
Inadequate Encryption Strength
Modem Remote DoS via Logic Error
CVE-2024-20150
- January 06, 2025
In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01412526; Issue ID: MSV-2018.
Marshaling, Unmarshaling
Modem Remote DoS via Incorrect Error Handling
CVE-2024-20077
- July 01, 2024
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01297807; Issue ID: MSV-1482.
Buffer Overflow
Modem Remote DoS via Error Handling Crash
CVE-2024-20076
- July 01, 2024
In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01297806; Issue ID: MSV-1481.
Buffer Overflow
Modem Firmware OOB Write Enables Remote RCE
CVE-2024-20039
- April 01, 2024
In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01240012; Issue ID: MSV-1215.
Out-of-Bounds Write in CCCI Modem Enables Local Priv Escalation
CVE-2023-32840
6.5 - Medium
- November 06, 2023
In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction may be also needed for exploitation Patch ID: MOLY01138425; Issue ID: MOLY01138425 (MSV-862).
Memory Corruption
Out-of-Bounds Write in CDMA PPP: Remote Privilege Escalation
CVE-2023-20819
9.8 - Critical
- October 02, 2023
In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: MOLY01068234; Issue ID: ALPS08010003.
Memory Corruption
4G Modem RRC DoS via invalid SIB12 input validation
CVE-2022-26446
7.5 - High
- November 08, 2022
In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SIB12 (CMAS message), with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00867883; Issue ID: ALPS07274118.
assertion failure
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for MediaTek Lr12a or by MediaTek? Click the Watch button to subscribe.
