CVE-2025-20632

High

Published: 03 February 2025

Published

03 February 2025

Modified

22 April 2025

KEV Added

—

Patch

—

CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0008 24.1th percentile

Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-20632 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Mediatek Software Development Kit. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 24.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Privilege Escalation (T1068). What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match

prevent

Directly mitigates the out-of-bounds write vulnerability by requiring timely application of the specific patch WCNCR00397139 to the wlan AP driver.

SI-10 Information Input Validation good match

prevent

Addresses the root cause of incorrect bounds check by enforcing validation of all inputs to the wlan AP driver to prevent out-of-bounds writes.

SI-16 Memory Protection partial match

prevent

Provides memory protection mechanisms such as DEP and ASLR to mitigate exploitation of the out-of-bounds write for local privilege escalation.

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

attack.mitre.org →

Why these techniques?

Local out-of-bounds write in wlan driver directly enables exploitation for privilege escalation (T1068).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch…

ID: WCNCR00397139; Issue ID: MSV-2188.

Deeper analysisAI

CVE-2025-20632 is a vulnerability in the wlan AP driver that enables an out-of-bounds write due to an incorrect bounds check. This issue, tracked as CWE-787 with Issue ID MSV-2188, affects MediaTek components and carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).

A local attacker requires only low privileges to exploit this vulnerability, which has low attack complexity and needs no user interaction or additional execution privileges. Exploitation can lead to local escalation of privilege, resulting in high impacts to confidentiality, integrity, and availability.

MediaTek's February 2025 product security bulletin provides mitigation details, including Patch ID WCNCR00397139. Security practitioners should consult https://corp.mediatek.com/product-security-bulletin/February-2025 and apply the patch to vulnerable systems.

Details

CWE(s): CWE-787

Affected Products

mediatek

software development kit

≤ 7.6.7.2

CVEs Like This One

CVE-2025-20631Same product: Mediatek Mt7615

CVE-2025-20646Same product: Mediatek Mt7915

CVE-2026-20433Same vendor: Mediatek

CVE-2026-20434Same vendor: Mediatek

CVE-2025-20727Same vendor: Mediatek

CVE-2026-20432Same vendor: Mediatek

CVE-2025-20708Same vendor: Mediatek

CVE-2026-20407Same vendor: Mediatek

CVE-2026-20408Same product: Mediatek Mt7615

CVE-2025-20633Same product: Mediatek Mt7615

References

https://corp.mediatek.com/product-security-bulletin/February-2025
Vendor Advisory · security@mediatek.com