CVSS: 4.4EPSS: 0%CPEs: 35EXPL: 0CVE-2022-20018
https://notcve.org/view.php?id=CVE-2022-20018
In seninf driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05863018; Issue ID: ALPS05863018. En el controlador seninf, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-908: Use of Uninitialized Resource •
CVSS: 6.7EPSS: 0%CPEs: 18EXPL: 0CVE-2022-20016
https://notcve.org/view.php?id=CVE-2022-20016
In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862986; Issue ID: ALPS05862986. En el controlador vow, se presenta una posible corrupción de memoria debido a un bloqueo inapropiado. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-667: Improper Locking •
CVSS: 4.4EPSS: 0%CPEs: 26EXPL: 0CVE-2022-20015
https://notcve.org/view.php?id=CVE-2022-20015
In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862966; Issue ID: ALPS05862966. En el controlador kd_camera_hw, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-908: Use of Uninitialized Resource •
CVSS: 6.7EPSS: 0%CPEs: 20EXPL: 0CVE-2022-20014
https://notcve.org/view.php?id=CVE-2022-20014
In vow driver, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05857308; Issue ID: ALPS05857308. En el controlador vow, se presenta una posible corrupción de la memoria debido a una comprobación de entrada inapropiada. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.4EPSS: 0%CPEs: 18EXPL: 0CVE-2022-20013
https://notcve.org/view.php?id=CVE-2022-20013
In vow driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05837742; Issue ID: ALPS05837742. En el controlador vow, se presenta una posible corrupción de memoria debido a una condición de carrera. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •