CVE-2026-20407_CVE-2026-20407

8.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00464377; Issue ID: MSV-4905.

Basic Information

ID CVE-2026-20407

Source MediaTek

Published Feb 2, 2026 at 08:14

Modified Feb 2, 2026 at 19:00

Affected Product

Vendor MediaTek, Inc.

Product MT7902, MT7920, MT7921, MT7922, MT7925, MT7927

Version NB SDK release 3.8 and before

Affected Versions MediaTek, Inc. MT7902, MT7920, MT7921, MT7922, MT7925, MT7927 NB SDK release 3.8 and before

CWE Classification

CWE-787

References

corp.mediatek.com /product-security-bulletin/February-2026

{
    "lastseen": "",
    "description": "In wlan STA driver, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00464377; Issue ID: MSV-4905.",
    "published": "2026-02-02T08:14:54.752Z",
    "modified": "2026-02-02T19:00:34.900Z",
    "type": "cve",
    "title": "CVE-2026-20407",
    "source": "MediaTek",
    "references": "https://corp.mediatek.com/product-security-bulletin/February-2026",
    "id": "CVE-2026-20407",
    "bulletinFamily": "",
    "cwe": [
        "CWE-787"
    ],
    "cvelist": null,
    "sourceData": "MediaTek, Inc. MT7902, MT7920, MT7921, MT7922, MT7925, MT7927 NB SDK release 3.8 and before",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "MT7902, MT7920, MT7921, MT7922, MT7925, MT7927",
    "version": "NB SDK release 3.8 and before",
    "vendor": "MediaTek, Inc.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}