Security Advisory

CVE-2025-20657

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-07 03:14:50

Last updated 2026-02-26 18:28:55

Assigner MediaTek

State PUBLISHED

Description

In vdec, there is a possible permission bypass due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09486425; Issue ID: MSV-2609.

← Browse all CVEs View on cve.org ↗