Vulnerabilities > CVE-2025-20637 - Improper Check for Unusual or Exceptional Conditions vulnerability in Mediatek Software Development KIT

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

mediatek

CWE-754

NVD

Published: 2025-02-03

Updated: 2025-03-17

Summary

In network HW, there is a possible system hang due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00399035; Issue ID: MSV-2380.

Vulnerable Configurations

Part	Description	Count
Application	Mediatek Mediatek Software Development KIT *	1
Hardware	Mediatek Mediatek Mt7981 - Mediatek Mt7986 -	2

Common Weakness Enumeration (CWE)

CWE-754 - Improper Check for Unusual or Exceptional Conditions

References

https://corp.mediatek.com/product-security-bulletin/February-2025