Every CVE whose affected-product data names Mediatek Lr13, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (15)
CVE-2022-21744 — CVSS 9.8 (critical): In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2022-20083 — CVSS 9.8 (critical): In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2023-20819 — CVSS 9.8 (critical): In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of…
CVE-2023-32874 — CVSS 9.8 (critical): In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2024-20154 — CVSS 8.8 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has…
CVE-2024-20039 — CVSS 8.8 (high): In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2021-40148 — CVSS 7.5 (high): In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure…
CVE-2022-26446 — CVSS 7.5 (high): In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when…
CVE-2023-32890 — CVSS 7.5 (high): In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no…
CVE-2024-20149 — CVSS 7.5 (high): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional…
CVE-2024-20150 — CVSS 7.5 (high): In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution…
CVE-2025-20667 — CVSS 7.5 (high): In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if…
CVE-2026-20434 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE…
CVE-2023-32891 — CVSS 6.7 (medium): In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of…
CVE-2025-20678 — CVSS 6.5 (medium): In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…