CVE-2026-20433 - Vulnerability Analysis
HighCVSS: 8.8Last Updated: April 7, 2026
Modem - Privilege Escalation
Overview
Modem contains an out of bounds write caused by missing bounds check, letting remote attackers escalate privileges if a UE connects to a rogue base station, exploit requires user interaction.
Severity & Score
Impact
Remote attackers can escalate privileges by exploiting out of bounds write via rogue base station connection.
Mitigation
Update to the latest version with patch MOLY01088681 applied.
Social Media Activity(2 posts)
š CVE-2026-20433 - High (8.8) In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges n... š https://www.thehackerwire.com/vulnerability/CVE-2026-20433/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original post
š CVE-2026-20433 - High (8.8) In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges n... š https://www.thehackerwire.com/vulnerability/CVE-2026-20433/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack
View original postRelated Resources
Details
- CVE ID
- CVE-2026-20433
- Severity
- High
- CVSS Score
- 8.8
- Type
- out_of_bounds_rw
- Status
- unconfirmed
- EPSS
- 5.8%
- Social Posts
- 2
CWE
- CWE-787
CVSS Metrics
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H