Every CVE whose affected-product data names Mediatek Nr15, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (65)
CVE-2022-20083 — CVSS 9.8 (critical): In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2023-32874 — CVSS 9.8 (critical): In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2022-21744 — CVSS 9.8 (critical): In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2024-20082 — CVSS 9.8 (critical): In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional…
CVE-2023-20819 — CVSS 9.8 (critical): In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of…
CVE-2025-20708 — CVSS 8.8 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2024-20039 — CVSS 8.8 (high): In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2025-20727 — CVSS 8.1 (high): In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege, if a UE…
CVE-2021-40148 — CVSS 7.5 (high): In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure…
CVE-2026-20401 — CVSS 7.5 (high): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2023-32844 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32845 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32846 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-20702 — CVSS 7.5 (high): In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE…
CVE-2023-32886 — CVSS 7.5 (high): In Modem IMS SMS UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service…
CVE-2023-32887 — CVSS 7.5 (high): In Modem IMS Stack, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no…
CVE-2023-32888 — CVSS 7.5 (high): In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service…
CVE-2023-32890 — CVSS 7.5 (high): In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no…
CVE-2023-32841 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2024-20004 — CVSS 7.5 (high): In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent…
CVE-2025-20666 — CVSS 7.5 (high): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2026-20434 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE…
CVE-2025-20667 — CVSS 7.5 (high): In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if…
CVE-2024-20094 — CVSS 7.5 (high): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional…
CVE-2024-20149 — CVSS 7.5 (high): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional…
CVE-2024-20150 — CVSS 7.5 (high): In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution…
CVE-2022-26446 — CVSS 7.5 (high): In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when…
CVE-2025-20725 — CVSS 7.5 (high): In ims service, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege…
CVE-2025-20726 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2024-20003 — CVSS 7.5 (high): In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent…
CVE-2023-32842 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32843 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32891 — CVSS 6.7 (medium): In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of…
CVE-2026-20402 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2023-32840 — CVSS 6.5 (medium): In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with…
CVE-2024-20069 — CVSS 6.5 (medium): In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead…
CVE-2025-20644 — CVSS 6.5 (medium): In Modem, there is a possible memory corruption due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20647 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20678 — CVSS 6.5 (medium): In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20703 — CVSS 6.5 (medium): In Modem, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20750 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20751 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20752 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20403 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20404 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2026-20405 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20406 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2026-20420 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2026-20421 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2026-20422 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20756 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service, if a UE has connected to a…
CVE-2025-20757 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20759 — CVSS 6.5 (medium): In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20760 — CVSS 6.5 (medium): In Modem, there is a possible read of uninitialized heap data due to an uncaught exception. This could lead to remote denial of service, if…
CVE-2025-20761 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20791 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20793 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20794 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20790 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20754 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to an incorrect bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20755 — CVSS 5.3 (medium): In Modem, there is a possible application crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20792 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20753 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2024-20070 — CVSS 5.1 (medium): In modem, there is a possible information disclosure due to using risky cryptographic algorithm during connection establishment…
CVE-2025-20758 — CVSS 4.9 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…