Home / Vulnerability Intelligence / CVE-2026-20430

CVE-2026-20430 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 2, 2026

WLAN AP FW - Privilege Escalation

Published: March 2, 2026Updated: March 2, 2026

Overview

WLAN AP FW contains an out of bounds write caused by incorrect bounds check, letting remote adjacent attackers escalate privileges without additional execution rights, exploit requires no user interaction.

Severity & Score

Severity: High

CVSS Score: 8.8

EPSS Score: 1.7%(Probability of exploitation in next 30 days)

Impact

Remote adjacent attackers can escalate privileges without needing additional execution rights.

Mitigation

Update to the latest firmware version containing Patch ID: WCNCR00467553.

References

https://corp.mediatek.com/product-security-bulletin/March-2026

Social Media Activity(1 post)

TheHackerWire

@thehackerwire

Mar 2, 2026

🟠 CVE-2026-20430 - High (8.8) In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for explo... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-20430/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

Related Resources

Details

CVE ID: CVE-2026-20430
Severity: High
CVSS Score: 8.8
Type: out_of_bounds_rw
Status: confirmed
EPSS: 1.7%
Social Posts: 1

CWE

CWE-787

CVSS Metrics

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

1.7%Probability of exploitation in the next 30 days