CVE-2025-20680
CRITICALDescription
In Bluetooth driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00418044; Issue ID: MSV-3482.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| mediatek | nbiot_sdk |
| mediatek | mt7902 |
| mediatek | mt7920 |
| mediatek | mt7921 |
| mediatek | mt7922 |
| mediatek | mt7925 |
| mediatek | mt7927 |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-20680? +
How severe is CVE-2025-20680? +
What products are affected by CVE-2025-20680? +
How do I check if I'm vulnerable to CVE-2025-20680? +
Related Vulnerabilities
vifm is vulnerable to a heap buffer overflow during the history merge process when saving the state file (vifminfo.json). This …
A heap buffer overflow vulnerability exists in the Jansi JNI "ioctl()" wrapper due to a lack of size verification for …
A type confusion vulnerability in Qt SVG allows an attacker to cause an application crash via a crafted SVG image. …
Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.This issue affects Connext Professional: from …
Heap-based Buffer Overflow vulnerability in iniparser_dumpsection_ini() in iniparser allows attacker to read out of bound memory
There is a Heap-based Buffer Overflow vulnerability in QTextMarkdownImporter. This requires an incorrectly formatted markdown file to be passed to …