Cyber Resilience

CVE-2026-20455

High

Published: 01 June 2026

Published
01 June 2026
Modified
01 June 2026
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0011 1.4th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-20455 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Mediatek Mt6739 Firmware. Its CVSS base score is 7.8 (High).

Operationally, ranked at the 1.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for…

more

exploitation. Patch ID: ALPS10873936; Issue ID: MSV-6784.

CWE(s)

Related Threats

CVEs Like This One

CVE-2026-20432Same product: Mediatek Mt6781
CVE-2026-20433Same product: Mediatek Mt6835
CVE-2026-20434Same product: Mediatek Mt6739
CVE-2025-20727Same product: Mediatek Mt6739
CVE-2025-20708Same product: Mediatek Mt6835
CVE-2025-20634Same product: Mediatek Mt6835
CVE-2025-20633Same vendor: Mediatek
CVE-2025-20632Same vendor: Mediatek
CVE-2025-20631Same vendor: Mediatek
CVE-2025-20646Same vendor: Mediatek

Affected Assets

mediatek
mt6739 firmware
all versions
mediatek
mt6761 firmware
all versions
mediatek
mt6765 firmware
all versions
mediatek
mt6768 firmware
all versions
mediatek
mt6781 firmware
all versions
mediatek
mt6789 firmware
all versions
mediatek
mt6835 firmware
all versions
mediatek
mt6853 firmware
all versions
mediatek
mt6855 firmware
all versions
mediatek
mt6877 firmware
all versions
+26 more product configuration(s) — see NVD for full list

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-787

Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.

References