CVE-2026-20456

Severity CVSS v4.0:

Pending analysis

Type:

CWE-787 Out-of-bounds Write

Publication date:

01/06/2026

Last modified:

01/06/2026

Description

In wlan STA driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00480851; Issue ID: MSV-6338.

Impact

References to Advisories, Solutions, and Tools

https://corp.mediatek.com/product-security-bulletin/June-2026