CVE-2024-20153

High

Published: 06 January 2025

Published

06 January 2025

Modified

12 January 2026

KEV Added

—

Patch

—

CVSS Score 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Score 0.0068 71.6th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-20153 is a high-severity Missing Critical Step in Authentication (CWE-304) vulnerability in Linuxfoundation Yocto. Its CVSS base score is 7.5 (High).

Operationally, ranked in the top 28.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-18 (Wireless Access) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

AC-18 Wireless Access good match

prevent

Directly mitigates the vulnerability by enforcing usage restrictions, authorization, and secure configuration for wireless access to prevent client connections to spoofed SSID access points.

SI-2 Flaw Remediation good match

prevent

Requires identification, reporting, and timely remediation of the specific wlan STA flaw (MSV-1598) through patches ALPS08990446/ALPS09057442 to eliminate the spoofing vulnerability.

SC-40 Wireless Link Protection partial match

prevent

Provides cryptographic safeguards for wireless links to protect against information disclosure resulting from connections to malicious access points with spoofed SSIDs.

NVD Description

In wlan STA, there is a possible way to trick a client to connect to an AP with spoofed SSID. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.…

Patch ID: ALPS08990446 / ALPS09057442; Issue ID: MSV-1598.

Deeper analysisAI

CVE-2024-20153 is a vulnerability in the wlan STA component that allows attackers to trick a client device into connecting to an access point (AP) with a spoofed SSID. This flaw enables remote information disclosure without requiring additional execution privileges. The issue is tracked under Issue ID MSV-1598 and affects MediaTek products, as indicated by the associated patch IDs ALPS08990446 and ALPS09057442. It has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) and is associated with CWE-304 (Missing Critical Step).

The attack scenario involves a remote, unauthenticated attacker with network access who can exploit the vulnerability with low complexity and no user interaction required. By spoofing an SSID, the attacker can lure the client into connecting to a malicious AP, resulting in the disclosure of sensitive information from the affected device.

MediaTek's January 2025 Product Security Bulletin provides details on the vulnerability and recommends applying the patches ALPS08990446 or ALPS09057442 to mitigate the issue. Security practitioners should check the bulletin at https://corp.mediatek.com/product-security-bulletin/January-2025 for affected products and remediation guidance.

Details

CWE(s): CWE-304

Affected Products

linuxfoundation

yocto

3.3, 4.0, 5.0

mediatek

software development kit

≤ 3.5

google

android

14.0, 15.0

CVEs Like This One

CVE-2024-20146Same product: Google Android

CVE-2024-20148Same product: Google Android

CVE-2025-20641Same product: Google Android

CVE-2025-20798Same product: Google Android

CVE-2025-20797Same product: Google Android

CVE-2025-20780Same product: Google Android

CVE-2025-20778Same product: Google Android

CVE-2025-20781Same product: Google Android

CVE-2026-20411Same product: Google Android

CVE-2026-20412Same product: Google Android

References

https://corp.mediatek.com/product-security-bulletin/January-2025
Vendor Advisory · security@mediatek.com