CVE-2026-20416

High

Published: 02 March 2026

Published

02 March 2026

Modified

03 March 2026

KEV Added

—

Patch

—

CVSS Score 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0002 6.9th percentile

Risk Priority 14 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-20416 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Google Android. Its CVSS base score is 7.2 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 6.9th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Privilege Escalation (T1068).

Threat & Defense Details

Likely Mitigating ControlsAI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

SI-16 Memory Protection

addresses: CWE-787

Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation

Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.

attack.mitre.org →

Why these techniques?

OOB write in PCIe component directly enables local privilege escalation from an already-privileged context (T1068).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for…

exploitation. Patch ID: ALPS10315038 / ALPS10340155; Issue ID: MSV-5155.

Deeper analysisAI

CVE-2026-20416 is an out-of-bounds write vulnerability in the PCIe component due to a missing bounds check, corresponding to CWE-787. It affects MediaTek platforms, as indicated by the associated patch IDs ALPS10315038 and ALPS10340155, and issue ID MSV-5155. The vulnerability has a CVSS v3.1 base score of 7.2 (AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H), rated as high severity.

A malicious actor who has already obtained System privilege can exploit this vulnerability locally to achieve escalation of privilege. No user interaction is required for exploitation, and the attack vector is rated as network accessible with low complexity, though it requires high privileges as a prerequisite.

MediaTek's March 2026 product security bulletin at https://corp.mediatek.com/product-security-bulletin/March-2026 provides details on the issue, with patches available under IDs ALPS10315038 and ALPS10340155 to mitigate the vulnerability.

Details

CWE(s): CWE-787

Affected Products

google

android

15.0, 16.0

CVEs Like This One

CVE-2025-20800Same product: Google Android

CVE-2026-20412Same product: Google Android

CVE-2026-20409Same product: Google Android

CVE-2025-20798Same product: Google Android

CVE-2025-20778Same product: Google Android

CVE-2025-20795Same product: Google Android

CVE-2025-20645Same product: Google Android

CVE-2025-20641Same product: Google Android

CVE-2025-20799Same product: Google Android

CVE-2025-20797Same product: Google Android

References

https://corp.mediatek.com/product-security-bulletin/March-2026
Vendor Advisory · security@mediatek.com