MediaTek Mt8781
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in MediaTek Mt8781.
By the Year
In 2026 there have been 17 vulnerabilities in MediaTek Mt8781 with an average score of 7.0 out of ten. Last year, in 2025 Mt8781 had 1 security vulnerability published. That is, 16 more vulnerabilities have already been reported in 2026 as compared to last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 17 | 7.02 |
| 2025 | 1 | 0.00 |
| 2024 | 1 | 7.40 |
It may take a day or so for new Mt8781 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent MediaTek Mt8781 Security Vulnerabilities
Mediatek Display Driver LPE via Bounds Check Overflow
CVE-2026-20444
6.7 - Medium
- March 02, 2026
In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436995; Issue ID: MSV-5721.
Memory Corruption
MediaTek Display Driver Use-After-Free Enables Local Priv Escalation
CVE-2026-20443
6.7 - Medium
- March 02, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5722.
Dangling pointer
MediaTek Display Driver UAF: Local DoS via Use-After-Free
CVE-2026-20442
4.4 - Medium
- March 02, 2026
In display, there is a possible system crash due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436998; Issue ID: MSV-5723.
Dangling pointer
Out-of-bounds write in MediaTek Modem firmware leads to privilege escalation
CVE-2026-20434
7.5 - High
- March 02, 2026
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY00782946; Issue ID: MSV-4135.
Memory Corruption
Use-After-Free in MediaTek Display Driver Enables Local Priv Escalation
CVE-2025-20786
6.7 - Medium
- January 06, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4673.
Double-free
MediaTek Display Driver Use-After-Free Enables Local Priv Esc
CVE-2025-20785
6.7 - Medium
- January 06, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10149882; Issue ID: MSV-4677.
Dangling pointer
MediaTek Display Driver Memory Corruption Priv Escalation
CVE-2025-20784
6.7 - Medium
- January 06, 2026
In display, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4683.
Use of Uninitialized Variable
MediaTek Display Driver OOB Write PrivEsc
CVE-2025-20783
6.7 - Medium
- January 06, 2026
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4684.
Memory Corruption
MediaTek Display Driver OOB Write Unchecked Bounds (Local PrivEsc)
CVE-2025-20782
6.7 - Medium
- January 06, 2026
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182882; Issue ID: MSV-4685.
Memory Corruption
MediaTek Display Driver UAF Memory Corruption Enables Priv Escalation
CVE-2025-20781
7.8 - High
- January 06, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10182914; Issue ID: MSV-4699.
Double-free
MediaTek Display Driver UAF causes privilege escalation
CVE-2025-20780
7.8 - High
- January 06, 2026
In display, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184061; Issue ID: MSV-4712.
Dangling pointer
Use-after-free in MediaTek Display Driver Enables Local Priv Esc
CVE-2025-20779
7 - High
- January 06, 2026
In display, there is a possible use after free due to a race condition. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184084; Issue ID: MSV-4720.
Dangling pointer
MediaTek Display Driver OOB Write Priv Esc Vulnerability
CVE-2025-20778
7.8 - High
- January 06, 2026
In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10184870; Issue ID: MSV-4729.
Memory Corruption
MediaTek GenieZone UA-FREE Memory Corruption
CVE-2025-20802
6.7 - Medium
- January 06, 2026
In geniezone, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10238968; Issue ID: MSV-4914.
Dangling pointer
MediaTek Battery OOB Write Escalation
CVE-2025-20798
7.8 - High
- January 06, 2026
In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5533.
Memory Corruption
MediaTek Battery Driver OOB Write Escalation (CVE-2025-20797)
CVE-2025-20797
7.8 - High
- January 06, 2026
In battery, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315812; Issue ID: MSV-5534.
Stack Overflow
MediaTek KeyInstall OOB Write Vulnerability (CVE-2025-20795)
CVE-2025-20795
7.8 - High
- January 06, 2026
In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10276761; Issue ID: MSV-5141.
Memory Corruption
Local Priv Esc via Permission Bypass in DA Component – Logic Error
CVE-2025-20658
- April 07, 2025
In DA, there is a possible permission bypass due to a logic error. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09474894; Issue ID: MSV-2597.
Memory Corruption
Cisco Telephony Priv Escalation via Permission Bypass (CVE-2024-20015)
CVE-2024-20015
7.4 - High
- February 05, 2024
In telephony, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08441419; Issue ID: ALPS08441419.
Authentication Bypass by Primary Weakness
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for MediaTek Mt8781 or by MediaTek? Click the Watch button to subscribe.
