Every CVE whose affected-product data names Mediatek Nr16, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (57)
CVE-2025-20634 — CVSS 9.8 (critical): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has…
CVE-2023-32874 — CVSS 9.8 (critical): In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2022-20083 — CVSS 9.8 (critical): In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2024-20082 — CVSS 9.8 (critical): In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional…
CVE-2022-21744 — CVSS 9.8 (critical): In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when…
CVE-2024-20067 — CVSS 9.8 (critical): In modem, there is a possible out of bounds write due to improper input invalidation. This could lead to remote denial of service with no…
CVE-2023-20819 — CVSS 9.8 (critical): In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of…
CVE-2024-20039 — CVSS 8.8 (high): In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no…
CVE-2025-20708 — CVSS 8.8 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2025-20727 — CVSS 8.1 (high): In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege, if a UE…
CVE-2023-32887 — CVSS 7.5 (high): In Modem IMS Stack, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no…
CVE-2023-32888 — CVSS 7.5 (high): In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service…
CVE-2023-32890 — CVSS 7.5 (high): In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no…
CVE-2024-20066 — CVSS 7.5 (high): In modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote denial of service with no…
CVE-2026-20434 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE…
CVE-2025-20667 — CVSS 7.5 (high): In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if…
CVE-2025-20725 — CVSS 7.5 (high): In ims service, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege…
CVE-2025-20726 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2023-32841 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32842 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32843 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32844 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32845 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32846 — CVSS 7.5 (high): In 5G Modem, there is a possible system crash due to improper error handling. This could lead to remote denial of service when receiving…
CVE-2023-32886 — CVSS 7.5 (high): In Modem IMS SMS UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service…
CVE-2024-20149 — CVSS 7.5 (high): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional…
CVE-2024-20150 — CVSS 7.5 (high): In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution…
CVE-2022-26446 — CVSS 7.5 (high): In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when…
CVE-2023-20702 — CVSS 7.5 (high): In 5G NRLC, there is a possible invalid memory access due to lack of error handling. This could lead to remote denial of service, if UE…
CVE-2024-20151 — CVSS 6.7 (medium): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a…
CVE-2024-20132 — CVSS 6.7 (medium): In Modem, there is a possible out of bonds write due to a mission bounds check. This could lead to local escalation of privilege with no…
CVE-2024-20133 — CVSS 6.7 (medium): In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege…
CVE-2024-20131 — CVSS 6.7 (medium): In Modem, there is a possible escalation of privilege due to an incorrect bounds check. This could lead to local escalation of privilege…
CVE-2023-32891 — CVSS 6.7 (medium): In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of…
CVE-2025-20794 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2023-32840 — CVSS 6.5 (medium): In modem CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with…
CVE-2025-20644 — CVSS 6.5 (medium): In Modem, there is a possible memory corruption due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20647 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20678 — CVSS 6.5 (medium): In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20703 — CVSS 6.5 (medium): In Modem, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20403 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20404 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2026-20405 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20406 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2026-20420 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2026-20422 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20752 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20759 — CVSS 6.5 (medium): In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20760 — CVSS 6.5 (medium): In Modem, there is a possible read of uninitialized heap data due to an uncaught exception. This could lead to remote denial of service, if…
CVE-2025-20761 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20793 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2024-20068 — CVSS 5.9 (medium): In modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional…
CVE-2025-20670 — CVSS 5.7 (medium): In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure…
CVE-2025-20753 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2025-20754 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to an incorrect bounds check. This could lead to remote denial of service, if a UE has…
CVE-2024-20070 — CVSS 5.1 (medium): In modem, there is a possible information disclosure due to using risky cryptographic algorithm during connection establishment…
CVE-2025-20758 — CVSS 4.9 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…