CVE-2025-20664 | THREATINT

Description

In wlan AP driver, there is a possible information disclosure due to an uncaught exception. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00406217; Issue ID: MSV-2773.

PUBLISHED Reserved 2024-11-01 | Published 2025-04-07 | Updated 2025-04-07 | Assigner MediaTek

Problem types

CWE-248 Uncaught Exception

Product status

SDK release 7.4.0.1 (MT7915) and 7.6.7.2 (MT7916, MT798X) and 8.2.1.4 (MT799X) and before

affected

References

corp.mediatek.com/product-security-bulletin/April-2025

cve.org (CVE-2025-20664)

nvd.nist.gov (CVE-2025-20664)

Download JSON