CVE-2025-20666
HIGHDescription
In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00650610; Issue ID: MSV-2933.
Is your site exposed to CVE-2025-20666?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| mediatek | nr15 |
| mediatek | mt2735 |
| mediatek | mt6833 |
| mediatek | mt6833p |
| mediatek | mt6853 |
| mediatek | mt6853t |
| mediatek | mt6855 |
| mediatek | mt6855t |
| mediatek | mt6873 |
| mediatek | mt6875 |
| mediatek | mt6875t |
| mediatek | mt6877 |
| mediatek | mt6877t |
| mediatek | mt6877tt |
| mediatek | mt6880 |
| mediatek | mt6883 |
| mediatek | mt6885 |
| mediatek | mt6889 |
| mediatek | mt6890 |
| mediatek | mt6891 |
| mediatek | mt6893 |
| mediatek | mt8666 |
| mediatek | mt8667 |
| mediatek | mt8673 |
| mediatek | mt8675 |
| mediatek | mt8771 |
| mediatek | mt8791 |
| mediatek | mt8791t |
| mediatek | mt8795t |
| mediatek | mt8797 |
| mediatek | mt8798 |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-20666? +
How severe is CVE-2025-20666? +
What products are affected by CVE-2025-20666? +
How do I check if I'm vulnerable to CVE-2025-20666? +
Related Vulnerabilities
In a Bluetooth device, using RS9116-WiseConnect SDK experiences a Denial of Service, if it receives malformed L2CAP packets, only hard …
wb2osz/direwolf (Dire Wolf) versions up to and including 1.8, prior to commit 3658a87, contain a reachable assertion vulnerability in the …
A vulnerability has been found in some Dahua products could allow an unauthenticated remote attacker to send a specially crafted …
Improper validation of packet length during tls-crypt-v2 key extraction in OpenVPN 2.6.0 through 2.6.19 and 2.7_alpha1 through 2.7.1 allows authenticated …
A vulnerability has been found in some Dahua products could allow an authenticated remote attacker to send a specially crafted …
In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - Add missing CRYPTO_ALG_ASYNC The tegra crypto driver …