CVE-2025-20693

In wlan STA driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote (proximal/adjacent) information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09812521; Issue ID: MSV-3421.

Published: Jul 8, 2025
Updated: Jul 9, 2025
CVE: CVE-2025-20693
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
linuxfoundation / yocto	4.0	4.0.x
mediatek / software_development_kit	-	3.7.x
google / android	13.0	13.0.x
google / android	14.0	14.0.x
google / android	15.0	15.0.x
openwrt / openwrt	21.02.0	21.02.0.x
openwrt / openwrt	23.05	23.05.x

https://corp.mediatek.com/product-security-bulletin/July-2025

Vulnerability Database

CVE-2025-20693