CVE-2024-20154
Published: 06 January 2025
Description
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00720348; Issue ID: MSV-2392.
Security Summary
CVE-2024-20154 is a vulnerability in the MediaTek Modem software that enables an out-of-bounds write due to a missing bounds check. Published on 2025-01-06, this issue is tracked under Issue ID MSV-2392 and addressed by Patch ID MOLY00720348. It carries a CVSS v3.1 base score of 8.8 (AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) and maps to CWEs 121 and 787.
An attacker can exploit this vulnerability for remote code execution on affected user equipment (UE), such as mobile devices, provided the device connects to a rogue base station under the attacker's control. No additional execution privileges or user interaction are required, making it feasible in scenarios where the attacker has adjacent network access.
MediaTek's January 2025 Product Security Bulletin details the patch and mitigation steps, available at https://corp.mediatek.com/product-security-bulletin/January-2025. Security practitioners should prioritize applying Patch ID MOLY00720348 to vulnerable Modem firmware to prevent exploitation.
Details
- CWE(s)