Every CVE whose affected-product data names Mediatek Lr12a, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (17)
CVE-2022-21744 — CVSS 9.8 (critical): In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2022-20083 — CVSS 9.8 (critical): In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2023-20819 — CVSS 9.8 (critical): In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of…
CVE-2024-20039 — CVSS 8.8 (high): In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2024-20154 — CVSS 8.8 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has…
CVE-2025-20727 — CVSS 8.1 (high): In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege, if a UE…
CVE-2026-20434 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE…
CVE-2022-26446 — CVSS 7.5 (high): In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when…
CVE-2024-20076 — CVSS 7.5 (high): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional…
CVE-2024-20077 — CVSS 7.5 (high): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional…
CVE-2024-20150 — CVSS 7.5 (high): In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution…
CVE-2025-20667 — CVSS 7.5 (high): In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if…
CVE-2025-20726 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2021-40148 — CVSS 7.5 (high): In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure…
CVE-2025-20725 — CVSS 7.5 (high): In ims service, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege…
CVE-2025-20678 — CVSS 6.5 (medium): In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2023-32840 — CVSS 6.5 (medium): In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with…