MediaTek slbc OOB Write via Type Confusion Local Priv Escalation
CVE-2026-20451 Published on May 4, 2026
In slbc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10828685; Issue ID: MSV-6504.
Vulnerability Analysis
CVE-2026-20451 can be exploited with local system access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.
Weakness Type
What is an Object Type Confusion Vulnerability?
The program allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.
CVE-2026-20451 has been classified to as an Object Type Confusion vulnerability or weakness.
Affected Versions
MediaTek, Inc. MediaTek chipset:- Version MT2718 is affected.
- Version MT6899 is affected.
- Version MT6985 is affected.
- Version MT6989 is affected.
- Version MT6991 is affected.
- Version MT8115 is affected.
- Version MT8186 is affected.
- Version MT8188 is affected.
- Version MT8196 is affected.
- Version MT8365 is affected.
- Version MT8367 is affected.
- Version MT8370 is affected.
- Version MT8371 is affected.
- Version MT8390 is affected.
- Version MT8391 is affected.
- Version MT8395 is affected.
- Version MT8676 is affected.
- Version MT8678 is affected.
- Version MT8766 is affected.
- Version MT8768 is affected.
- Version MT8775 is affected.
- Version MT8781 is affected.
- Version MT8786 is affected.
- Version MT8788E is affected.
- Version MT8791T is affected.
- Version MT8792 is affected.
- Version MT8793 is affected.
- Version MT8796 is affected.
- Version MT8873 is affected.
- Version MT8883 is affected.
- Version MT8893 is affected.
- Version MT8910 is affected.