Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

MediaTek Bluetooth Flaws Impact Android

December 2, 2024
Reading Time: 2 mins read
in Alerts
MediaTek Bluetooth Flaws Impact Android

A series of critical security vulnerabilities have been discovered in MediaTek chipsets, affecting over 1.5 billion active Android devices worldwide. MediaTek, a leader in mobile chipset production and the second-largest global provider of smartphone chipsets, powers a wide array of Android tablets, smartphones, and smart-feature phones. Known for integrating advanced 5G, AI, and connectivity solutions, the company now faces scrutiny due to these security flaws, which could enable attackers to exploit systems without user interaction.

One of the most severe vulnerabilities, tracked as CVE-2024-20125, involves an out-of-bounds write in the vdec component. This flaw can allow attackers to escalate privileges to system-level execution, posing a critical threat to affected devices running Android 13 and 14. MediaTek’s security bulletin also highlights medium-severity vulnerabilities, such as CVE-2024-20130, a stack overflow in the power component, and CVE-2024-20135, an out-of-bounds write in the soundtrigger component, both of which can result in privilege escalation. Denial-of-service vulnerabilities, including CVE-2024-20129 and CVE-2024-20128, were also identified in the telephony component, impacting devices running Android versions 13, 14, and 15.

The impact of these vulnerabilities extends beyond Android. Platforms like openWRT, Yocto, and RDK-B are also affected by flaws such as CVE-2024-20136, which involves an out-of-bounds read in the DA component, potentially leading to local information disclosure. Additionally, vulnerabilities in MediaTek’s WLAN and Bluetooth components could allow client disconnection and data leaks across multiple software development kits and platforms. These vulnerabilities demonstrate the extensive reach of MediaTek chipsets across various technology ecosystems.

MediaTek has urged device manufacturers and users to implement the latest patches to mitigate risks and prevent potential exploitation. The company has established a reporting mechanism on its website for users to disclose additional vulnerabilities. This incident underscores the importance of continuous security monitoring and timely software updates to safeguard devices and data in an increasingly interconnected world.

Reference:

  • MediaTek Bluetooth Chipset Vulnerabilities Expose 1.5 Billion Android Devices
Tags: AndroidBluetoothCyber AlertsCyber Alerts 2024Cyber threatsDecember 2024IoT DevicesMediaTekVulnerabilities
ADVERTISEMENT

Related Posts

W3LL Phishing Kit Steals Microsoft Logins

W3LL Phishing Kit Steals Microsoft Logins

May 20, 2025
W3LL Phishing Kit Steals Microsoft Logins

Windows 10 Intel BitLocker Bug Fixed

May 20, 2025
W3LL Phishing Kit Steals Microsoft Logins

Zoom Phishing Attack Steals Corporate Logins

May 20, 2025
Glibc Flaw Gives Linux Root Access Risk

Mozilla Urgent Firefox Patch Fixes RCE Flaws

May 19, 2025
Fileless Remcos RAT Delivery Via LNK Files

ModiLoader Malware Targets Windows Users

May 19, 2025
Glibc Flaw Gives Linux Root Access Risk

Glibc Flaw Gives Linux Root Access Risk

May 19, 2025

Latest Alerts

W3LL Phishing Kit Steals Microsoft Logins

Windows 10 Intel BitLocker Bug Fixed

Zoom Phishing Attack Steals Corporate Logins

Mozilla Urgent Firefox Patch Fixes RCE Flaws

ModiLoader Malware Targets Windows Users

Glibc Flaw Gives Linux Root Access Risk

Subscribe to our newsletter

    Latest Incidents

    Belgian mobile customers’ data leaked

    Promises2Kids Data Breach Hits Foster Youth

    RVTools Compromised With a Trojanized Installer

    Massive DDoS Hits Poland’s Civic Platform

    Arla Plant Cyberattack Halts Operations

    Georgia’s Harbin Clinic Hit by Data Breach

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial