CVE-2026-20401

{"id": "CVE-2026-20401", "cveTags": [], "metrics": {}, "published": "2026-02-02T09:15:54.663", "references": [{"url": "https://corp.mediatek.com/product-security-bulletin/February-2026", "source": "security@mediatek.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "security@mediatek.com", "description": [{"lang": "en", "value": "CWE-617"}]}], "descriptions": [{"lang": "en", "value": "In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01738310; Issue ID: MSV-5933."}], "lastModified": "2026-02-03T16:44:36.630", "sourceIdentifier": "security@mediatek.com"}