CVE-2026-20411

Published Feb 2, 2026

Last updated 3 months ago

CVSS high 7.8

Firmware

Overview

Description: In cameraisp, there is a possible escalation of privilege due to use after free. This could lead to local denial of service if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10351676; Issue ID: MSV-5737.
Source: security@mediatek.com
NVD status: Analyzed
Products: android

Risk scores

CVSS 3.1

Type: Secondary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

security@mediatek.com: CWE-416

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "2700BCC5-634D-4EC6-AB67-5B678D5F951D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*",
            "matchCriteriaId": "8538774C-906D-4B03-A3E7-FA7A55E0DA9E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:google:android:16.0:-:*:*:*:*:*:*",
            "matchCriteriaId": "02882AB1-7993-47DD-84A0-8DF4272D85ED",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:mediatek:mt6878:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "855A8046-34ED-4891-ACE5-76AB10AC8D53",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "704BE5CE-AE08-4432-A8B0-4C8BD62148AD",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6881:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "9F7C1B31-4E33-4939-A926-79FE401368CB",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "AF3E2B84-DAFE-4E11-B23B-026F719475F5",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E0CA45C9-7BFE-4C93-B2AF-B86501F763AB",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "2A7D8055-F4B6-41EE-A078-11D56285AB66",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6899:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "C6E9F80F-9AC9-41E0-BB14-9DB6F14B62CD",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "EB6B9A26-F8A1-4322-AA4E-CDF8F7D99000",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "EA72CCD1-DEA2-48EB-8781-04CFDD41AAEE",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "AD7DE6B2-66D9-4A3E-B15F-D56505559255",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6991:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "CBBB30DF-E963-4940-B742-F6801F68C3FC",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt6993:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "57E92BE0-5E65-4770-8E1A-0E5D07A38164",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "3CE2FC35-716A-4706-97BA-5DB165041580",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "BA3D4A45-38EE-4125-AE67-89D1C707F95A",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "ED210E64-6CE7-42B1-849E-68C0E22521F6",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "97C76F98-5D8D-4E52-ABAF-CD27C1205B0E",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8370:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "DA2B6BB9-7544-41A7-BF3A-344AA4CC4B31",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "B774B7D7-B7DD-43A0-833F-7E39DF82CA60",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "D98FBE1C-D57B-49D9-9C4E-8A133A0C1C89",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "6C9AB4D2-0EDD-4D5E-9393-F535CA2F24C4",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "2FE14B46-C1CA-465F-8578-059FA2ED30EB",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "152F6606-FA23-4530-AA07-419866B74CB3",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "EE302F6F-170E-4350-A8F4-65BE0C50CB78",
            "vulnerable": false
          },
          {
            "criteria": "cpe:2.3:h:mediatek:mt8793:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "2FBD3487-F8CE-406C-8BD7-DD57FF8CD60B",
            "vulnerable": false
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

Related CVEs

References