CVSS: 6.7EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39086
https://notcve.org/view.php?id=CVE-2022-39086
04 Jan 2023 — In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-44429
https://notcve.org/view.php?id=CVE-2022-44429
04 Jan 2023 — In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services. En el controlador WLAN, existe una posible verificación de los límites faltantes. Esto podría provocar una denegación local de servicio en los servicios WLAN. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-44441
https://notcve.org/view.php?id=CVE-2022-44441
04 Jan 2023 — In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services. En el controlador WLAN, existe una posible verificación de los límites faltantes. Esto podría provocar una denegación local de servicio en los servicios WLAN. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 16EXPL: 0CVE-2022-39087
https://notcve.org/view.php?id=CVE-2022-39087
04 Jan 2023 — In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-862: Missing Authorization •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-44430
https://notcve.org/view.php?id=CVE-2022-44430
04 Jan 2023 — In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services. En el controlador WLAN, existe una posible verificación de los límites faltantes. Esto podría provocar una denegación local de servicio en los servicios WLAN. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 52EXPL: 0CVE-2022-32635
https://notcve.org/view.php?id=CVE-2022-32635
03 Jan 2023 — In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573237; Issue ID: ALPS07573237. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.4EPSS: 0%CPEs: 15EXPL: 0CVE-2022-32648
https://notcve.org/view.php?id=CVE-2022-32648
03 Jan 2023 — In disp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535964; Issue ID: ALPS06535964. En disp, existe un posible use after free debido a una condición de ejecución. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-662: Improper Synchronization •
CVSS: 6.7EPSS: 0%CPEs: 54EXPL: 0CVE-2022-32636
https://notcve.org/view.php?id=CVE-2022-32636
03 Jan 2023 — In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07510064. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 8EXPL: 0CVE-2022-32652
https://notcve.org/view.php?id=CVE-2022-32652
03 Jan 2023 — In mtk-aie, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07262617; Issue ID: ALPS07262617. En mtk-aie, existe un posible use after free debido a un error lógico. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 58EXPL: 0CVE-2022-32640
https://notcve.org/view.php?id=CVE-2022-32640
03 Jan 2023 — In meta wifi, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441652; Issue ID: ALPS07441652. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-787: Out-of-bounds Write •