Every CVE whose affected-product data names Mediatek Nr17r, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (20)
CVE-2025-20634 — CVSS 9.8 (critical): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has…
CVE-2025-20708 — CVSS 8.8 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2025-20727 — CVSS 8.1 (high): In Modem, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote escalation of privilege, if a UE…
CVE-2025-20704 — CVSS 8.0 (high): In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE…
CVE-2025-20726 — CVSS 7.5 (high): In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege, if a…
CVE-2025-20667 — CVSS 7.5 (high): In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if…
CVE-2026-20422 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20678 — CVSS 6.5 (medium): In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20703 — CVSS 6.5 (medium): In Modem, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20752 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20405 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20406 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…
CVE-2026-20420 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20793 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has…
CVE-2025-20794 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2026-20403 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service, if a UE has…
CVE-2026-20404 — CVSS 6.5 (medium): In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has…
CVE-2025-20670 — CVSS 5.7 (medium): In Modem, there is a possible permission bypass due to improper certificate validation. This could lead to remote information disclosure…
CVE-2025-20754 — CVSS 5.3 (medium): In Modem, there is a possible system crash due to an incorrect bounds check. This could lead to remote denial of service, if a UE has…
CVE-2025-20758 — CVSS 4.9 (medium): In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected…