MediaTek WLAN AP Driver Heap Buffer Overflow Allows Remote Code Execution
CVE-2026-20452 Published on June 1, 2026

In wlan AP driver, there is a possible memory corruption due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00480138; Issue ID: MSV-6295.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

HIGH

Integrity Impact:

HIGH

Availability Impact:

HIGH

Weakness Type

Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

Affected Versions

MediaTek, Inc. MediaTek chipset:

Version MT6890 is affected.
Version MT7615 is affected.
Version MT7915 is affected.
Version MT7916 is affected.
Version MT7981 is affected.
Version MT7986 is affected.
Version MT7990 is affected.
Version MT7992 is affected.
Version MT7993 is affected.

MediaTek WLAN AP Driver Heap Buffer Overflow Allows Remote Code ExecutionCVE-2026-20452 Published on June 1, 2026

Vulnerability Analysis

Weakness Type

Heap-based Buffer Overflow

Affected Versions

MediaTek WLAN AP Driver Heap Buffer Overflow Allows Remote Code Execution
CVE-2026-20452 Published on June 1, 2026