CVE-2025-20789 | THREATINT

Description

In GPU pdma, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117741; Issue ID: MSV-4538.

PUBLISHED Reserved 2024-11-01 | Published 2025-12-02 | Updated 2025-12-02 | Assigner MediaTek

Problem types

CWE-201 Information Exposure Through Sent Data

Product status

Android 15.0,

affected

References

corp.mediatek.com/product-security-bulletin/December-2025

cve.org (CVE-2025-20789)

nvd.nist.gov (CVE-2025-20789)

Download JSON