CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2021-0675
https://notcve.org/view.php?id=CVE-2021-0675
In alac decoder, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06064258; Issue ID: ALPS06064258. En el decodificador alac, existe una posible escritura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-787: Out-of-bounds Write •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 0CVE-2021-0904
https://notcve.org/view.php?id=CVE-2021-0904
In SRAMROM, there is a possible permission bypass due to an insecure permission setting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06076938; Issue ID: ALPS06076938. En SRAMROM, existe una posible derivación de permisos debido a una configuración de permisos insegura. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.2EPSS: 0%CPEs: 14EXPL: 0CVE-2021-0671
https://notcve.org/view.php?id=CVE-2021-0671
In apusys, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05664273; Issue ID: ALPS05664273. En apusys, se presenta una posible corrupción de memoria debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-787: Out-of-bounds Write •
CVSS: 7.2EPSS: 0%CPEs: 15EXPL: 0CVE-2021-0670
https://notcve.org/view.php?id=CVE-2021-0670
In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05654663; Issue ID: ALPS05654663. En apusys, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-416: Use After Free •
CVSS: 7.2EPSS: 0%CPEs: 25EXPL: 0CVE-2021-0669
https://notcve.org/view.php?id=CVE-2021-0669
In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05681550; Issue ID: ALPS05681550. En apusys, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-416: Use After Free •