CVE-2026-20455

Severity CVSS v4.0:

Pending analysis

Type:

CWE-787 Out-of-bounds Write

Publication date:

01/06/2026

Last modified:

01/06/2026

Description

In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10873936; Issue ID: MSV-6784.

Impact

References to Advisories, Solutions, and Tools

https://corp.mediatek.com/product-security-bulletin/June-2026