Cyber Resilience

CVE-2024-20146

High

Published: 06 January 2025

Published
06 January 2025
Modified
22 April 2025
KEV Added
Patch
CVSS Score v3.1 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score 0.0004 13.1th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-20146 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Linuxfoundation Yocto. Its CVSS base score is 8.1 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation of Remote Services (T1210); ranked at the 13.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2024-20146 is an out-of-bounds write vulnerability in the WLAN STA driver stemming from improper input validation. It affects MediaTek's WLAN STA driver components, as detailed in the vendor's product security bulletin. The issue, tracked internally as MSV-1835 with patch IDs WCNCR00389496 and ALPS09137491, carries a CVSS v3.1 base score of 8.1 (AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H) and is associated with CWE-787 (Out-of-bounds Write). The vulnerability was published on January 6, 2025.

An attacker within adjacent physical proximity, such as on the same network segment, can exploit this flaw remotely with low complexity and no required privileges or user interaction. Successful exploitation enables proximal or adjacent code execution, potentially compromising system integrity and availability without impacting confidentiality.

MediaTek's January 2025 Product Security Bulletin provides details on the vulnerability and recommends applying the specified patches (WCNCR00389496 / ALPS09137491) to mitigate the risk. Security practitioners should verify affected devices and ensure firmware updates are deployed promptly.

EU & UK References

Vulnerability details

In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:…

more

WCNCR00389496 / ALPS09137491; Issue ID: MSV-1835.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Out-of-bounds write in WLAN STA driver enables adjacent-network RCE (T1210) and kernel-level privilege escalation (T1068) via malicious wireless frames.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2024-20148Same product: Google Android
CVE-2025-20641Same product: Google Android
CVE-2025-20778Same product: Google Android
CVE-2026-20412Same product: Google Android
CVE-2025-20795Same product: Google Android
CVE-2025-20798Same product: Google Android
CVE-2025-20645Same product: Google Android
CVE-2026-0111Same product: Google Android
CVE-2026-20409Same product: Google Android
CVE-2026-20416Same product: Google Android

Affected Assets

linuxfoundation
yocto
3.3, 4.0, 5.0
mediatek
software development kit
≤ 2.5
google
android
13.0, 14.0, 15.0
openwrt
openwrt
23.05

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Mandates timely identification, reporting, and correction of flaws like this out-of-bounds write vulnerability through patching as specified in MediaTek's bulletin.

prevent

Requires implementation of input validation mechanisms at system entry points to prevent exploitation of improper validation in the WLAN STA driver.

prevent

Enforces memory protection mechanisms such as address space layout randomization and data execution prevention to mitigate out-of-bounds write exploits.

References