Search

Find a vulnerability

Search criteria

    48 vulnerabilities found for iot_yocto by mediatek

    CVE-2025-20721 (GCVE-0-2025-20721)

    Vulnerability from nvd – Published: 2025-10-14 09:11 – Updated: 2026-02-26 17:47
    VLAI
    Summary
    In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10089545; Issue ID: MSV-4279.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20721",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-15T03:56:19.238863Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:41.671Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6886, MT6897, MT6899, MT6985, MT6989, MT6991, MT8195, MT8196, MT8370, MT8390, MT8395, MT8792, MT8793",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "IOT-v25.0 / Android 13.0, 14.0, 15.0, 16.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10089545; Issue ID: MSV-4279."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-14T09:11:43.313Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2025"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2025-20721",
        "datePublished": "2025-10-14T09:11:43.313Z",
        "dateReserved": "2024-11-01T01:21:50.390Z",
        "dateUpdated": "2026-02-26T17:47:41.671Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-20100 (GCVE-0-2024-20100)

    Vulnerability from nvd – Published: 2024-10-07 02:35 – Updated: 2024-10-07 13:41
    VLAI
    Summary
    In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT3605, MT6985, MT6989, MT6990, MT7927, MT8183, MT8365, MT8512, MT8676, MT8678, MT8695, MT8698, MT8755, MT8775, MT8792, MT8796 Affected: Android 13.0, 14.0, 15.0 / SDK release 3.3 and before / Yocto 4.0 / IOT-v24.0
    Create a notification for this product.
    mediatek mt3605 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt3605:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6985 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6989 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6990 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7927 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8183 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8365 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8512 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8512:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8676 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8678 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8695 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8698 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8698:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8755 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8775 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8792 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8796 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 13.0
    Affected: 14.0
    Affected: 15.0
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt3605:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt3605",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6985",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6989",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6990",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7927",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8183",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8365",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8512:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8512",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8676",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8678",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8695",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8698:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8698",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8755",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8775",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8792",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8796",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "13.0"
                  },
                  {
                    "status": "affected",
                    "version": "14.0"
                  },
                  {
                    "status": "affected",
                    "version": "15.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20100",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-07T13:40:52.466014Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-07T13:41:34.047Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT3605, MT6985, MT6989, MT6990, MT7927, MT8183, MT8365, MT8512, MT8676, MT8678, MT8695, MT8698, MT8755, MT8775, MT8792, MT8796",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 13.0, 14.0, 15.0 / SDK release 3.3 and before / Yocto 4.0 / IOT-v24.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-10-07T02:35:12.817Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2024"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2024-20100",
        "datePublished": "2024-10-07T02:35:12.817Z",
        "dateReserved": "2023-11-02T13:35:35.175Z",
        "dateUpdated": "2024-10-07T13:41:34.047Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20055 (GCVE-0-2024-20055)

    Vulnerability from nvd – Published: 2024-04-01 02:35 – Updated: 2025-03-26 20:06
    VLAI
    Summary
    In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    • CWE-125 - Out-of-bounds Read
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "NONE",
                  "baseScore": 6.3,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20055",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-02T15:43:27.829962Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-125",
                    "description": "CWE-125 Out-of-bounds Read",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-26T20:06:37.541Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T21:52:31.585Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/April-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT8168, MT8173, MT8175, MT8188, MT8195, MT8365, MT8370, MT8390, MT8395, MT8673, MT8696, MT8781, MT8795T, MT8798, MT8871",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / Yocto 4.0 / IOT-v23.2"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-04-01T02:35:21.521Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/April-2024"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2024-20055",
        "datePublished": "2024-04-01T02:35:21.521Z",
        "dateReserved": "2023-11-02T13:35:35.160Z",
        "dateUpdated": "2025-03-26T20:06:37.541Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32829 (GCVE-0-2023-32829)

    Vulnerability from nvd – Published: 2023-10-02 02:05 – Updated: 2024-09-21 15:20
    VLAI
    Summary
    In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6879, MT6886, MT6891, MT6895, MT6896, MT6983, MT6985, MT8137, MT8139, MT8188, MT8195, MT8195Z, MT8390, MT8395 Affected: Android 12.0, 13.0 / Yocto 3.1, 3.3, 4.0 / IOT-v23.0
    Create a notification for this product.
    mediatek mt6879 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6886 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6891 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6895 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6896 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6896:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6983 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6985 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8137 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8137:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8139 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8139:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8188 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8195 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8195z Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8390 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8395 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 12.0
    Affected: 13.0
        cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.079Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6879",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6886",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6891",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6895",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6896:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6896",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6983",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6985",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8137:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8137",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8139:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8139",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8188",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8195",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8195z",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8390",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8395",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0"
                  },
                  {
                    "status": "affected",
                    "version": "13.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32829",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-21T15:20:25.750588Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-190",
                    "description": "CWE-190 Integer Overflow or Wraparound",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-21T15:20:30.194Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6879, MT6886, MT6891, MT6895, MT6896, MT6983, MT6985, MT8137, MT8139, MT8188, MT8195, MT8195Z, MT8390, MT8395",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / Yocto 3.1, 3.3, 4.0 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-02T02:05:42.049Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32829",
        "datePublished": "2023-10-02T02:05:42.049Z",
        "dateReserved": "2023-05-16T03:04:32.150Z",
        "dateUpdated": "2024-09-21T15:20:30.194Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32828 (GCVE-0-2023-32828)

    Vulnerability from nvd – Published: 2023-10-02 02:05 – Updated: 2024-09-21 15:21
    VLAI
    Summary
    In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767817; Issue ID: ALPS07767817.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6771, MT6779, MT6785, MT6853, MT6853T, MT6873, MT6877, MT6885, MT6891, MT6893, MT8183, MT8188, MT8195, MT8390, MT8395 Affected: Android 12.0 / IOT-v23.0
    Create a notification for this product.
    mediatek mt6771 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6779 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6785 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853t Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6873 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6877 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6885 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6891 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6893 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8183 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8188 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8195 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8390 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8395 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.127Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6771",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6779",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6785",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853t",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6873",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6877",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6885",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6891",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6893",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8183",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8188",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8195",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8390",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8395",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32828",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-21T15:21:08.261382Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-190",
                    "description": "CWE-190 Integer Overflow or Wraparound",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-21T15:21:33.274Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6771, MT6779, MT6785, MT6853, MT6853T, MT6873, MT6877, MT6885, MT6891, MT6893, MT8183, MT8188, MT8195, MT8390, MT8395",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767817; Issue ID: ALPS07767817."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-02T02:05:40.253Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32828",
        "datePublished": "2023-10-02T02:05:40.253Z",
        "dateReserved": "2023-05-16T03:04:32.150Z",
        "dateUpdated": "2024-09-21T15:21:33.274Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32820 (GCVE-0-2023-32820)

    Vulnerability from nvd – Published: 2023-10-02 02:05 – Updated: 2024-09-23 15:27
    VLAI
    Summary
    In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Denial of Service
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT5221, MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT7663, MT7668, MT7902, MT7921, MT8168, MT8365, MT8518S, MT8532, MT8666, MT8673, MT8675, MT8695, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791, MT8797, MT8798 Affected: Android 11.0, 12.0, 13.0 / Linux 4.19 / Yocto 3.1, 3.3 / IOT-v23.0
    Create a notification for this product.
    mediatek mt5221 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt5221:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6781 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6833 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853t Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6855 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6873 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6875 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6877 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6879 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6883 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6885 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6886 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6889 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6891 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6893 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6895 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6983 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6985 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7663 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7668 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7668:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7902 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7921 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7921:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8168 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8365 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8518s Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8532 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8666 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8673 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8675 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8695 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8766 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8768 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8781 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8786 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8789 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8791 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8797 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8798 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 11.0
    Affected: 12.0
    Affected: 13.0
        cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.050Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt5221:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt5221",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6781",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6833",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853t",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6855",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6873",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6875",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6877",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6879",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6883",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6885",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6886",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6889",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6891",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6893",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6895",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6983",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6985",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7663",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7668:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7668",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7902",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7921:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7921",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8168",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8365",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8518s",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8532",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8666",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8673",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8675",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8695",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8766",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8768",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8781",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8786",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8789",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8791",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8797",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8798",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "11.0"
                  },
                  {
                    "status": "affected",
                    "version": "12.0"
                  },
                  {
                    "status": "affected",
                    "version": "13.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32820",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-23T15:26:22.197010Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-20",
                    "description": "CWE-20 Improper Input Validation",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-23T15:27:56.957Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT5221, MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT7663, MT7668, MT7902, MT7921, MT8168, MT8365, MT8518S, MT8532, MT8666, MT8673, MT8675, MT8695, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791, MT8797, MT8798",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0, 13.0 / Linux 4.19 / Yocto 3.1, 3.3 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-02T02:05:28.312Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32820",
        "datePublished": "2023-10-02T02:05:28.312Z",
        "dateReserved": "2023-05-16T03:04:32.147Z",
        "dateUpdated": "2024-09-23T15:27:56.957Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32811 (GCVE-0-2023-32811)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-01 18:15
    VLAI
    Summary
    In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: ALPS07929848.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT8168, MT8175, MT8188, MT8195, MT8365, MT8666, MT8667, MT8673 Affected: Android 12.0, 13.0 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    linuxfoundation yocto Affected: 4.0
        cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek iot_yocto Affected: 23.0
        cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 12.0
        cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 13.0
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.093Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "yocto",
                "vendor": "linuxfoundation",
                "versions": [
                  {
                    "status": "affected",
                    "version": "4.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "iot_yocto",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "23.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "13.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32811",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-01T18:07:49.242266Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              },
              {
                "descriptions": [
                  {
                    "cweId": "CWE-20",
                    "description": "CWE-20 Improper Input Validation",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-01T18:15:59.375Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT8168, MT8175, MT8188, MT8195, MT8365, MT8666, MT8667, MT8673",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: ALPS07929848."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:18.886Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32811",
        "datePublished": "2023-09-04T02:28:18.886Z",
        "dateReserved": "2023-05-16T03:04:32.146Z",
        "dateUpdated": "2024-10-01T18:15:59.375Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32807 (GCVE-0-2023-32807)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-08 20:12
    VLAI
    Summary
    In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588360; Issue ID: ALPS07588360.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.054Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32807",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:23.201074Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:12:19.968Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT8167, MT8168, MT8173, MT8183, MT8321, MT8365, MT8385, MT8666, MT8667, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 13.0 / IOT-v23.0 (Yocto 4.0)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588360; Issue ID: ALPS07588360."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:12.386Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32807",
        "datePublished": "2023-09-04T02:28:12.386Z",
        "dateReserved": "2023-05-16T03:04:32.145Z",
        "dateUpdated": "2024-10-08T20:12:19.968Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32806 (GCVE-0-2023-32806)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-21 17:56
    VLAI
    Summary
    In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441589; Issue ID: ALPS07441589.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT6990, MT8168, MT8365, MT8673, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791T, MT8797 Affected: Android 12.0, 13.0 / OpenWrt 21.02 / Yocto 4.0 / IOT-v23.0
    Create a notification for this product.
    mediatek mt8797 Affected: Android 12.0
    Affected: Android 13.0
    Affected: OpenWrt 21.02
    Affected: Yocto 4.0
    Affected: IOT-v23.0
        cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8791t:*:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.061Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8791t:*:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8797",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "Android 12.0"
                  },
                  {
                    "status": "affected",
                    "version": "Android 13.0"
                  },
                  {
                    "status": "affected",
                    "version": "OpenWrt 21.02"
                  },
                  {
                    "status": "affected",
                    "version": "Yocto 4.0"
                  },
                  {
                    "status": "affected",
                    "version": "IOT-v23.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32806",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-15T17:15:35.648906Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-21T17:56:57.803Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT6990, MT8168, MT8365, MT8673, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791T, MT8797",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / OpenWrt 21.02 / Yocto 4.0 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441589; Issue ID: ALPS07441589."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:10.594Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32806",
        "datePublished": "2023-09-04T02:28:10.594Z",
        "dateReserved": "2023-05-16T03:04:32.145Z",
        "dateUpdated": "2024-10-21T17:56:57.803Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20850 (GCVE-0-2023-20850)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-01 17:38
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340381.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    linuxfoundation yocto Affected: 4.0
        cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek iot_yocto Affected: 23.0
        cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 11.0
        cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 12.0
        cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
    Create a notification for this product.
    linux linux_kernel Affected: 6.1
        cpe:2.3:o:linux:linux_kernel:6.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.111Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "yocto",
                "vendor": "linuxfoundation",
                "versions": [
                  {
                    "status": "affected",
                    "version": "4.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "iot_yocto",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "23.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "11.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:linux:linux_kernel:6.1:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "linux_kernel",
                "vendor": "linux",
                "versions": [
                  {
                    "status": "affected",
                    "version": "6.1"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.5,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20850",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-01T17:22:21.552027Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-01T17:38:18.992Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340381."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:05.423Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20850",
        "datePublished": "2023-09-04T02:28:05.423Z",
        "dateReserved": "2022-10-28T02:03:23.696Z",
        "dateUpdated": "2024-10-01T17:38:18.992Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20849 (GCVE-0-2023-20849)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-01 18:58
    VLAI
    Summary
    In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340350.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-416 - Use After Free
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    linuxfoundation yocto Affected: 4.0
        cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek iot_yocto Affected: 23.0
        cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 11.0
        cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 12.0
        cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
    Create a notification for this product.
    linux linux_kernel Affected: 6.1
        cpe:2.3:o:linux:linux_kernel:6.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.136Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "yocto",
                "vendor": "linuxfoundation",
                "versions": [
                  {
                    "status": "affected",
                    "version": "4.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "iot_yocto",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "23.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "11.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:linux:linux_kernel:6.1:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "linux_kernel",
                "vendor": "linux",
                "versions": [
                  {
                    "status": "affected",
                    "version": "6.1"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.5,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20849",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-01T18:46:24.279622Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-416",
                    "description": "CWE-416 Use After Free",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-01T18:58:38.274Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340350."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:03.822Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20849",
        "datePublished": "2023-09-04T02:28:03.822Z",
        "dateReserved": "2022-10-28T02:03:23.696Z",
        "dateUpdated": "2024-10-01T18:58:38.274Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20848 (GCVE-0-2023-20848)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-21 17:29
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340433.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-125 - Out-of-bounds Read
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    mediatek mt8781 Affected: Android 11.0
    Affected: Android 12.0
    Affected: Linux 6.1
    Affected: IOT-v23.0
    Affected: Yocto 4.0
        cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.131Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8781",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "Android 11.0"
                  },
                  {
                    "status": "affected",
                    "version": "Android 12.0"
                  },
                  {
                    "status": "affected",
                    "version": "Linux 6.1"
                  },
                  {
                    "status": "affected",
                    "version": "IOT-v23.0"
                  },
                  {
                    "status": "affected",
                    "version": "Yocto 4.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.5,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20848",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-15T17:15:36.906817Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-125",
                    "description": "CWE-125 Out-of-bounds Read",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-21T17:29:46.979Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340433."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:02.171Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20848",
        "datePublished": "2023-09-04T02:28:02.171Z",
        "dateReserved": "2022-10-28T02:03:23.696Z",
        "dateUpdated": "2024-10-21T17:29:46.979Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20847 (GCVE-0-2023-20847)

    Vulnerability from nvd – Published: 2023-09-04 02:28 – Updated: 2024-10-08 20:12
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of service with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354025; Issue ID: ALPS07340108.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Denial of Service
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:40.983Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20847",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:24.175864Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:12:28.123Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of service with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354025; Issue ID: ALPS07340108."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:00.486Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20847",
        "datePublished": "2023-09-04T02:28:00.486Z",
        "dateReserved": "2022-10-28T02:03:23.695Z",
        "dateUpdated": "2024-10-08T20:12:28.123Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20846 (GCVE-0-2023-20846)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-08 20:12
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354023; Issue ID: ALPS07340098.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.078Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20846",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:26.375520Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:12:36.786Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354023; Issue ID: ALPS07340098."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:58.838Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20846",
        "datePublished": "2023-09-04T02:27:58.838Z",
        "dateReserved": "2022-10-28T02:03:23.692Z",
        "dateUpdated": "2024-10-08T20:12:36.786Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20845 (GCVE-0-2023-20845)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-08 20:12
    VLAI
    Summary
    In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07197795; Issue ID: ALPS07340357.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6897, MT6983, MT8188, MT8195, MT8395 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.202Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20845",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:27.692507Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:12:45.420Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6897, MT6983, MT8188, MT8195, MT8395",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07197795; Issue ID: ALPS07340357."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:57.105Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20845",
        "datePublished": "2023-09-04T02:27:57.105Z",
        "dateReserved": "2022-10-28T02:03:23.692Z",
        "dateUpdated": "2024-10-08T20:12:45.420Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20844 (GCVE-0-2023-20844)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-08 20:12
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354058; Issue ID: ALPS07340121.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.140Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20844",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:29.272363Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:12:52.704Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354058; Issue ID: ALPS07340121."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:55.388Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20844",
        "datePublished": "2023-09-04T02:27:55.388Z",
        "dateReserved": "2022-10-28T02:03:23.691Z",
        "dateUpdated": "2024-10-08T20:12:52.704Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20843 (GCVE-0-2023-20843)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-08 20:13
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340119; Issue ID: ALPS07340119.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.207Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20843",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:31.035593Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:13:00.738Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340119; Issue ID: ALPS07340119."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:53.712Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20843",
        "datePublished": "2023-09-04T02:27:53.712Z",
        "dateReserved": "2022-10-28T02:03:23.691Z",
        "dateUpdated": "2024-10-08T20:13:00.738Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20842 (GCVE-0-2023-20842)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-21 17:28
    VLAI
    Summary
    In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354259; Issue ID: ALPS07340477.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    mediatek mt8673 Affected: Android 11.0
    Affected: Android 12.0
    Affected: Linux 6.1
    Affected: IOT-v23.0
    Affected: Yocto 4.0
        cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.209Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8673",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "Android 11.0"
                  },
                  {
                    "status": "affected",
                    "version": "Android 12.0"
                  },
                  {
                    "status": "affected",
                    "version": "Linux 6.1"
                  },
                  {
                    "status": "affected",
                    "version": "IOT-v23.0"
                  },
                  {
                    "status": "affected",
                    "version": "Yocto 4.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.5,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20842",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-15T17:15:38.065535Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-21T17:28:33.704Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys_cmdq, there is a possible out of bounds write due to a missing\u00a0valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354259; Issue ID: ALPS07340477."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:51.965Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20842",
        "datePublished": "2023-09-04T02:27:51.965Z",
        "dateReserved": "2022-10-28T02:03:23.691Z",
        "dateUpdated": "2024-10-21T17:28:33.704Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20841 (GCVE-0-2023-20841)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-21 17:25
    VLAI
    Summary
    In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326441.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8673 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    mediatek mt8673 Affected: Android 11.0
    Affected: Android 12.0
    Affected: Linux 6.1
    Affected: IOT-v23.0
    Affected: Yocto 4.0
        cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:40.995Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8673",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "Android 11.0"
                  },
                  {
                    "status": "affected",
                    "version": "Android 12.0"
                  },
                  {
                    "status": "affected",
                    "version": "Linux 6.1"
                  },
                  {
                    "status": "affected",
                    "version": "IOT-v23.0"
                  },
                  {
                    "status": "affected",
                    "version": "Yocto 4.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.5,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20841",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-15T17:15:39.302243Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-21T17:25:15.440Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8673",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326441."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:50.280Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20841",
        "datePublished": "2023-09-04T02:27:50.280Z",
        "dateReserved": "2022-10-28T02:03:23.690Z",
        "dateUpdated": "2024-10-21T17:25:15.440Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20840 (GCVE-0-2023-20840)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-21 17:21
    VLAI
    Summary
    In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326430; Issue ID: ALPS07326430.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-125 - Out-of-bounds Read
    • CWE-787 - Out-of-bounds Write
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6897, MT6983, MT8188, MT8195, MT8395 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    mediatek mt8395 Affected: Android 11.0
    Affected: Android 12.0
    Affected: Linux 6.1
    Affected: IOT-v23.0
    Affected: Yocto 4.0
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.001Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6897:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8395",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "Android 11.0"
                  },
                  {
                    "status": "affected",
                    "version": "Android 12.0"
                  },
                  {
                    "status": "affected",
                    "version": "Linux 6.1"
                  },
                  {
                    "status": "affected",
                    "version": "IOT-v23.0"
                  },
                  {
                    "status": "affected",
                    "version": "Yocto 4.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.5,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20840",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-15T17:15:40.443586Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-125",
                    "description": "CWE-125 Out-of-bounds Read",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              },
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-21T17:21:58.898Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6897, MT6983, MT8188, MT8195, MT8395",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326430; Issue ID: ALPS07326430."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:48.606Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20840",
        "datePublished": "2023-09-04T02:27:48.606Z",
        "dateReserved": "2022-10-28T02:03:23.690Z",
        "dateUpdated": "2024-10-21T17:21:58.898Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20839 (GCVE-0-2023-20839)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-08 20:13
    VLAI
    Summary
    In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326409.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8673 Affected: Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:40.985Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20839",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:33.383673Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:13:11.478Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6895, MT6897, MT6983, MT8188, MT8195, MT8395, MT8673",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0 / Linux 6.1 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326409."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:47.001Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20839",
        "datePublished": "2023-09-04T02:27:47.001Z",
        "dateReserved": "2022-10-28T02:03:23.690Z",
        "dateUpdated": "2024-10-08T20:13:11.478Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-20835 (GCVE-0-2023-20835)

    Vulnerability from nvd – Published: 2023-09-04 02:27 – Updated: 2024-10-21 16:59
    VLAI
    Summary
    In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341261; Issue ID: ALPS07326570.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
    • CWE-416 - Use After Free
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6895, MT6983, MT8188, MT8195, MT8395, MT8781 Affected: Android 12.0, 13.0 / IOT-v23.0 (Yocto 4.0)
    Create a notification for this product.
    mediatek mt8781 Affected: Android 12.0
    Affected: Android 13.0
    Affected: IOT-v23.0 (Yocto 4.0)
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
        cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T09:14:41.159Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*",
                  "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8781",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "Android 12.0"
                  },
                  {
                    "status": "affected",
                    "version": "Android 13.0"
                  },
                  {
                    "status": "affected",
                    "version": "IOT-v23.0 (Yocto 4.0)"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.4,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-20835",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-15T17:15:43.579088Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-362",
                    "description": "CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              },
              {
                "descriptions": [
                  {
                    "cweId": "CWE-416",
                    "description": "CWE-416 Use After Free",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-21T16:59:12.216Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6895, MT6983, MT8188, MT8195, MT8395, MT8781",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / IOT-v23.0 (Yocto 4.0)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341261; Issue ID: ALPS07326570."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:27:40.600Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-20835",
        "datePublished": "2023-09-04T02:27:40.600Z",
        "dateReserved": "2022-10-28T02:03:23.686Z",
        "dateUpdated": "2024-10-21T16:59:12.216Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-20721 (GCVE-0-2025-20721)

    Vulnerability from cvelistv5 – Published: 2025-10-14 09:11 – Updated: 2026-02-26 17:47
    VLAI
    Summary
    In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10089545; Issue ID: MSV-4279.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-20721",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-15T03:56:19.238863Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-02-26T17:47:41.671Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6886, MT6897, MT6899, MT6985, MT6989, MT6991, MT8195, MT8196, MT8370, MT8390, MT8395, MT8792, MT8793",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "IOT-v25.0 / Android 13.0, 14.0, 15.0, 16.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10089545; Issue ID: MSV-4279."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-14T09:11:43.313Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2025"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2025-20721",
        "datePublished": "2025-10-14T09:11:43.313Z",
        "dateReserved": "2024-11-01T01:21:50.390Z",
        "dateUpdated": "2026-02-26T17:47:41.671Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-20100 (GCVE-0-2024-20100)

    Vulnerability from cvelistv5 – Published: 2024-10-07 02:35 – Updated: 2024-10-07 13:41
    VLAI
    Summary
    In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT3605, MT6985, MT6989, MT6990, MT7927, MT8183, MT8365, MT8512, MT8676, MT8678, MT8695, MT8698, MT8755, MT8775, MT8792, MT8796 Affected: Android 13.0, 14.0, 15.0 / SDK release 3.3 and before / Yocto 4.0 / IOT-v24.0
    Create a notification for this product.
    mediatek mt3605 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt3605:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6985 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6989 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6990 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7927 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8183 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8365 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8512 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8512:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8676 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8678 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8695 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8698 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8698:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8755 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8775 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8792 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8796 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 13.0
    Affected: 14.0
    Affected: 15.0
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt3605:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt3605",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6985",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6989:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6989",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6990:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6990",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7927:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7927",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8183",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8365",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8512:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8512",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8676:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8676",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8678:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8678",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8695",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8698:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8698",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8755:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8755",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8775:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8775",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8792:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8792",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8796:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8796",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:14.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:15.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "13.0"
                  },
                  {
                    "status": "affected",
                    "version": "14.0"
                  },
                  {
                    "status": "affected",
                    "version": "15.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 9.8,
                  "baseSeverity": "CRITICAL",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20100",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-07T13:40:52.466014Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-07T13:41:34.047Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT3605, MT6985, MT6989, MT6990, MT7927, MT8183, MT8365, MT8512, MT8676, MT8678, MT8695, MT8698, MT8755, MT8775, MT8792, MT8796",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 13.0, 14.0, 15.0 / SDK release 3.3 and before / Yocto 4.0 / IOT-v24.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "CWE-787 Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-10-07T02:35:12.817Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2024"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2024-20100",
        "datePublished": "2024-10-07T02:35:12.817Z",
        "dateReserved": "2023-11-02T13:35:35.175Z",
        "dateUpdated": "2024-10-07T13:41:34.047Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-20055 (GCVE-0-2024-20055)

    Vulnerability from cvelistv5 – Published: 2024-04-01 02:35 – Updated: 2025-03-26 20:06
    VLAI
    Summary
    In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Information Disclosure
    • CWE-125 - Out-of-bounds Read
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "NONE",
                  "baseScore": 6.3,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-20055",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-04-02T15:43:27.829962Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-125",
                    "description": "CWE-125 Out-of-bounds Read",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-03-26T20:06:37.541Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T21:52:31.585Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/April-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT8168, MT8173, MT8175, MT8188, MT8195, MT8365, MT8370, MT8390, MT8395, MT8673, MT8696, MT8781, MT8795T, MT8798, MT8871",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / Yocto 4.0 / IOT-v23.2"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-04-01T02:35:21.521Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/April-2024"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2024-20055",
        "datePublished": "2024-04-01T02:35:21.521Z",
        "dateReserved": "2023-11-02T13:35:35.160Z",
        "dateUpdated": "2025-03-26T20:06:37.541Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32829 (GCVE-0-2023-32829)

    Vulnerability from cvelistv5 – Published: 2023-10-02 02:05 – Updated: 2024-09-21 15:20
    VLAI
    Summary
    In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6879, MT6886, MT6891, MT6895, MT6896, MT6983, MT6985, MT8137, MT8139, MT8188, MT8195, MT8195Z, MT8390, MT8395 Affected: Android 12.0, 13.0 / Yocto 3.1, 3.3, 4.0 / IOT-v23.0
    Create a notification for this product.
    mediatek mt6879 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6886 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6891 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6895 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6896 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6896:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6983 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6985 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8137 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8137:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8139 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8139:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8188 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8195 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8195z Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8390 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8395 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 12.0
    Affected: 13.0
        cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.079Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6879",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6886",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6891",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6895",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6896:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6896",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6983",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6985",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8137:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8137",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8139:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8139",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8188",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8195",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8195z",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8390",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8395",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:12.0:-:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0"
                  },
                  {
                    "status": "affected",
                    "version": "13.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32829",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-21T15:20:25.750588Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-190",
                    "description": "CWE-190 Integer Overflow or Wraparound",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-21T15:20:30.194Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6879, MT6886, MT6891, MT6895, MT6896, MT6983, MT6985, MT8137, MT8139, MT8188, MT8195, MT8195Z, MT8390, MT8395",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / Yocto 3.1, 3.3, 4.0 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-02T02:05:42.049Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32829",
        "datePublished": "2023-10-02T02:05:42.049Z",
        "dateReserved": "2023-05-16T03:04:32.150Z",
        "dateUpdated": "2024-09-21T15:20:30.194Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32828 (GCVE-0-2023-32828)

    Vulnerability from cvelistv5 – Published: 2023-10-02 02:05 – Updated: 2024-09-21 15:21
    VLAI
    Summary
    In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767817; Issue ID: ALPS07767817.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-190 - Integer Overflow or Wraparound
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT6771, MT6779, MT6785, MT6853, MT6853T, MT6873, MT6877, MT6885, MT6891, MT6893, MT8183, MT8188, MT8195, MT8390, MT8395 Affected: Android 12.0 / IOT-v23.0
    Create a notification for this product.
    mediatek mt6771 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6779 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6785 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853t Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6873 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6877 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6885 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6891 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6893 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8183 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8188 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8195 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8390 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8395 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.127Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6771",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6779",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6785",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853t",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6873",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6877",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6885",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6891",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6893",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8183:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8183",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8188",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8195",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8390",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8395",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32828",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-21T15:21:08.261382Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-190",
                    "description": "CWE-190 Integer Overflow or Wraparound",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-21T15:21:33.274Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6771, MT6779, MT6785, MT6853, MT6853T, MT6873, MT6877, MT6885, MT6891, MT6893, MT8183, MT8188, MT8195, MT8390, MT8395",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767817; Issue ID: ALPS07767817."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-02T02:05:40.253Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32828",
        "datePublished": "2023-10-02T02:05:40.253Z",
        "dateReserved": "2023-05-16T03:04:32.150Z",
        "dateUpdated": "2024-09-21T15:21:33.274Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32820 (GCVE-0-2023-32820)

    Vulnerability from cvelistv5 – Published: 2023-10-02 02:05 – Updated: 2024-09-23 15:27
    VLAI
    Summary
    In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Denial of Service
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT5221, MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT7663, MT7668, MT7902, MT7921, MT8168, MT8365, MT8518S, MT8532, MT8666, MT8673, MT8675, MT8695, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791, MT8797, MT8798 Affected: Android 11.0, 12.0, 13.0 / Linux 4.19 / Yocto 3.1, 3.3 / IOT-v23.0
    Create a notification for this product.
    mediatek mt5221 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt5221:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6781 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6833 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6853t Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6855 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6873 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6875 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6877 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6879 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6883 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6885 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6886 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6889 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6891 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6893 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6895 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6983 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt6985 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7663 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7668 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7668:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7902 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt7921 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt7921:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8168 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8365 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8518s Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8532 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8666 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8673 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8675 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8695 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8766 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8768 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8781 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8786 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8789 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8791 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8797 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek mt8798 Affected: 0 , ≤ * (custom)
        cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 11.0
    Affected: 12.0
    Affected: 13.0
        cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.050Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt5221:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt5221",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6781",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6833",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6853t:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6853t",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6855",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6873",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6875:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6875",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6877",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6879",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6883:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6883",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6885",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6886",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6889",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6891",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6893",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6895",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6983",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt6985",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7663:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7663",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7668:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7668",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7902:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7902",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt7921:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt7921",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8168",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8365",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8518s",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8532",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8666",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8673",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8675",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8695:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8695",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8766:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8766",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8768:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8768",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8781",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8786:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8786",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8789:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8789",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8791",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8797",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:h:mediatek:mt8798:-:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "mt8798",
                "vendor": "mediatek",
                "versions": [
                  {
                    "lessThanOrEqual": "*",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "11.0"
                  },
                  {
                    "status": "affected",
                    "version": "12.0"
                  },
                  {
                    "status": "affected",
                    "version": "13.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.5,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32820",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-23T15:26:22.197010Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-20",
                    "description": "CWE-20 Improper Input Validation",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-23T15:27:56.957Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT5221, MT6781, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6879, MT6883, MT6885, MT6886, MT6889, MT6891, MT6893, MT6895, MT6983, MT6985, MT7663, MT7668, MT7902, MT7921, MT8168, MT8365, MT8518S, MT8532, MT8666, MT8673, MT8675, MT8695, MT8766, MT8768, MT8781, MT8786, MT8789, MT8791, MT8797, MT8798",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 11.0, 12.0, 13.0 / Linux 4.19 / Yocto 3.1, 3.3 / IOT-v23.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-02T02:05:28.312Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/October-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32820",
        "datePublished": "2023-10-02T02:05:28.312Z",
        "dateReserved": "2023-05-16T03:04:32.147Z",
        "dateUpdated": "2024-09-23T15:27:56.957Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32811 (GCVE-0-2023-32811)

    Vulnerability from cvelistv5 – Published: 2023-09-04 02:28 – Updated: 2024-10-01 18:15
    VLAI
    Summary
    In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: ALPS07929848.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    • CWE-787 - Out-of-bounds Write
    • CWE-20 - Improper Input Validation
    Assigner
    Impacted products
    Vendor Product Version
    MediaTek, Inc. MT2713, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT8168, MT8175, MT8188, MT8195, MT8365, MT8666, MT8667, MT8673 Affected: Android 12.0, 13.0 / IOT-v23.0 / Yocto 4.0
    Create a notification for this product.
    linuxfoundation yocto Affected: 4.0
        cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
    Create a notification for this product.
    mediatek iot_yocto Affected: 23.0
        cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 12.0
        cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
    Create a notification for this product.
    google android Affected: 13.0
        cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.093Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "yocto",
                "vendor": "linuxfoundation",
                "versions": [
                  {
                    "status": "affected",
                    "version": "4.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "iot_yocto",
                "vendor": "mediatek",
                "versions": [
                  {
                    "status": "affected",
                    "version": "23.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "android",
                "vendor": "google",
                "versions": [
                  {
                    "status": "affected",
                    "version": "13.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.7,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32811",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-01T18:07:49.242266Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              },
              {
                "descriptions": [
                  {
                    "cweId": "CWE-20",
                    "description": "CWE-20 Improper Input Validation",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-01T18:15:59.375Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT2713, MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT8168, MT8175, MT8188, MT8195, MT8365, MT8666, MT8667, MT8673",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 12.0, 13.0 / IOT-v23.0 / Yocto 4.0"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: ALPS07929848."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:18.886Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32811",
        "datePublished": "2023-09-04T02:28:18.886Z",
        "dateReserved": "2023-05-16T03:04:32.146Z",
        "dateUpdated": "2024-10-01T18:15:59.375Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-32807 (GCVE-0-2023-32807)

    Vulnerability from cvelistv5 – Published: 2023-09-04 02:28 – Updated: 2024-10-08 20:12
    VLAI
    Summary
    In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588360; Issue ID: ALPS07588360.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    Assigner
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T15:25:37.054Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-32807",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-08T14:00:23.201074Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-08T20:12:19.968Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "MT6779, MT6781, MT6785, MT6789, MT6833, MT6835, MT6853, MT6855, MT6873, MT8167, MT8168, MT8173, MT8183, MT8321, MT8365, MT8385, MT8666, MT8667, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788",
              "vendor": "MediaTek, Inc.",
              "versions": [
                {
                  "status": "affected",
                  "version": "Android 13.0 / IOT-v23.0 (Yocto 4.0)"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588360; Issue ID: ALPS07588360."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-09-04T02:28:12.386Z",
            "orgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
            "shortName": "MediaTek"
          },
          "references": [
            {
              "url": "https://corp.mediatek.com/product-security-bulletin/September-2023"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ee979b05-11f8-4f25-a7e0-a1fa9c190374",
        "assignerShortName": "MediaTek",
        "cveId": "CVE-2023-32807",
        "datePublished": "2023-09-04T02:28:12.386Z",
        "dateReserved": "2023-05-16T03:04:32.145Z",
        "dateUpdated": "2024-10-08T20:12:19.968Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }