The threat research team at SonicWall Capture Labs identified CVE-2024-20017, a critical zero-click vulnerability affecting MediaTek Wi-Fi chipsets used in products from various manufacturers. This flaw allows remote code execution without user interaction, impacting a wide range of devices such as routers and smartphones. While a patch was released in March, a public PoC was recently made available, increasing the risk of exploitation. The vulnerability is due to a buffer overflow in the wappd network daemon, allowing attackers to trigger the exploit by sending specific packets. SonicWall has provided protection signatures, and users are advised to update their firmware to mitigate the risk.
https://blog.sonicwall.com/en-us/2024/09/critical-exploit-in-mediatek-wi-fi-chipsets-zero-click-vulnerability-cve-2024-20017-threatens-routers-and-smartphones/