Security Advisory

CVE-2026-20409

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-02 08:14:58

Last updated 2026-03-30 13:03:00

Assigner MediaTek

State PUBLISHED

Description

In imgsys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10363246; Issue ID: MSV-5779.

← Browse all CVEs View on cve.org ↗