CVE-2025-20806 – This CVE describes a use-after-free vulnerabili... (How to Fix)

Q: What is the severity of CVE-2025-20806?

CVE-2025-20806 has a CVSS score of 6.7 (MEDIUM). This CVE describes a use-after-free vulnerability in the dpe component that could lead to memory corruption. An attacker with System privilege could exploit this to escalate privileges locally without user interaction. The vulnerability affects systems using MediaTek chipsets with the vulnerable dpe component.

📋 TL;DR

This CVE describes a use-after-free vulnerability in the dpe component that could lead to memory corruption. An attacker with System privilege could exploit this to escalate privileges locally without user interaction. The vulnerability affects systems using MediaTek chipsets with the vulnerable dpe component.

💻 Affected Systems

Products:

MediaTek chipsets with dpe component

Versions: Specific versions not specified in CVE, check vendor advisory

Operating Systems: Android/Linux-based systems using MediaTek chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Requires System privilege for initial access; affects devices with MediaTek chipsets

📦 What is this software?

Android by Google

View all CVEs affecting Android →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local privilege escalation to kernel-level access, potentially allowing complete system compromise and persistence.

🟠

Likely Case

Local privilege escalation allowing an attacker to gain higher privileges than initially obtained.

🟢

If Mitigated

Limited impact if proper privilege separation and least privilege principles are enforced.

🌐 Internet-Facing: LOW

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires System privilege for initial foothold; exploitation involves memory corruption techniques

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check patch ID ALPS10114835

Vendor Advisory: https://corp.mediatek.com/product-security-bulletin/January-2026

Restart Required: Yes

Instructions:

1. Check vendor advisory for specific patch details. 2. Apply patch ALPS10114835. 3. Reboot device. 4. Verify patch installation.

🔧 Temporary Workarounds

Restrict System privilege access

linux

Limit which processes/users have System privilege to reduce attack surface

🧯 If You Can't Patch

Implement strict access controls to limit System privilege to essential processes only
Monitor for unusual privilege escalation attempts and memory corruption events

🔍 How to Verify

Check if Vulnerable:

Check device chipset and kernel version against vendor advisory; examine dpe component version

Check Version:

cat /proc/version; check vendor-specific version commands

Verify Fix Applied:

Verify patch ALPS10114835 is applied; check kernel/dpe version after update

📡 Detection & Monitoring

Log Indicators:

Kernel panic logs
Memory corruption errors in system logs
Unexpected privilege escalation events

Network Indicators:

None - local exploitation only

SIEM Query:

Search for kernel panic events OR memory corruption errors in system logs

📊 Metadata

CVE ID: CVE-2025-20806

CVSS v3 Score: 6.7 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-416

EPSS Score: 0.01% exploit probability (0.3th percentile)

Published: January 6, 2026

Last Updated: January 8, 2026

🔗 References

https://corp.mediatek.com/product-security-bulletin/January-2026 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-20806, you might also want to check these: