CVE-2024-20146

High

Published: 06 January 2025

Published

06 January 2025

Modified

22 April 2025

KEV Added

—

Patch

—

CVSS Score 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

EPSS Score 0.0004 12.7th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-20146 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Linuxfoundation Yocto. Its CVSS base score is 8.1 (High).

Operationally, ranked at the 12.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Threat & Defense at a Glance

What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match

prevent

Mandates timely identification, reporting, and correction of flaws like this out-of-bounds write vulnerability through patching as specified in MediaTek's bulletin.

SI-10 Information Input Validation good match

prevent

Requires implementation of input validation mechanisms at system entry points to prevent exploitation of improper validation in the WLAN STA driver.

SI-16 Memory Protection good match

prevent

Enforces memory protection mechanisms such as address space layout randomization and data execution prevention to mitigate out-of-bounds write exploits.

NVD Description

In wlan STA driver, there is a possible out of bounds write due to improper input validation. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:…

WCNCR00389496 / ALPS09137491; Issue ID: MSV-1835.

Deeper analysisAI

CVE-2024-20146 is an out-of-bounds write vulnerability in the WLAN STA driver stemming from improper input validation. It affects MediaTek's WLAN STA driver components, as detailed in the vendor's product security bulletin. The issue, tracked internally as MSV-1835 with patch IDs WCNCR00389496 and ALPS09137491, carries a CVSS v3.1 base score of 8.1 (AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H) and is associated with CWE-787 (Out-of-bounds Write). The vulnerability was published on January 6, 2025.

An attacker within adjacent physical proximity, such as on the same network segment, can exploit this flaw remotely with low complexity and no required privileges or user interaction. Successful exploitation enables proximal or adjacent code execution, potentially compromising system integrity and availability without impacting confidentiality.

MediaTek's January 2025 Product Security Bulletin provides details on the vulnerability and recommends applying the specified patches (WCNCR00389496 / ALPS09137491) to mitigate the risk. Security practitioners should verify affected devices and ensure firmware updates are deployed promptly.

Details

CWE(s): CWE-787

Affected Products

linuxfoundation

yocto

3.3, 4.0, 5.0

mediatek

software development kit

≤ 2.5

google

android

13.0, 14.0, 15.0

openwrt

23.05

CVEs Like This One

CVE-2024-20148Same product: Google Android

CVE-2024-20153Same product: Google Android

CVE-2025-20641Same product: Google Android

CVE-2025-20778Same product: Google Android

CVE-2026-20412Same product: Google Android

CVE-2025-20795Same product: Google Android

CVE-2025-20798Same product: Google Android

CVE-2025-20645Same product: Google Android

CVE-2026-20409Same product: Google Android

CVE-2026-20430Same product: Mediatek Software Development Kit

References

https://corp.mediatek.com/product-security-bulletin/January-2025
Vendor Advisory · security@mediatek.com