CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47453
https://notcve.org/view.php?id=CVE-2022-47453
07 Mar 2023 — In wcn service, there is a possible missing params check. This could lead to local denial of service in wcn service. • https://www.unisoc.com/en_us/secy/announcementDetail/1632612109718192129 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 16EXPL: 0CVE-2022-47484
https://notcve.org/view.php?id=CVE-2022-47484
07 Mar 2023 — In telephony service, there is a missing permission check. This could lead to local denial of service in telephone service with no additional execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1632612109718192129 • CWE-862: Missing Authorization •
CVSS: 6.7EPSS: 0%CPEs: 27EXPL: 0CVE-2023-20630
https://notcve.org/view.php?id=CVE-2023-20630
07 Mar 2023 — In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628505; Issue ID: ALPS07628505. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20635
https://notcve.org/view.php?id=CVE-2023-20635
07 Mar 2023 — In keyinstall, there is a possible information disclosure due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07563028; Issue ID: ALPS07563028. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 6.7EPSS: 0%CPEs: 27EXPL: 0CVE-2023-20633
https://notcve.org/view.php?id=CVE-2023-20633
07 Mar 2023 — In usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628508; Issue ID: ALPS07628508. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-129: Improper Validation of Array Index •
CVSS: 4.4EPSS: 0%CPEs: 45EXPL: 0CVE-2023-20646
https://notcve.org/view.php?id=CVE-2023-20646
07 Mar 2023 — In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628536; Issue ID: ALPS07628536. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 28EXPL: 0CVE-2023-20634
https://notcve.org/view.php?id=CVE-2023-20634
07 Mar 2023 — In widevine, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07635697; Issue ID: ALPS07635697. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-20: Improper Input Validation •
CVSS: 4.1EPSS: 0%CPEs: 5EXPL: 0CVE-2023-20620
https://notcve.org/view.php?id=CVE-2023-20620
07 Mar 2023 — In adsp, there is a possible escalation of privilege due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07554558; Issue ID: ALPS07554558. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2023-20636
https://notcve.org/view.php?id=CVE-2023-20636
07 Mar 2023 — In display drm, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07292593; Issue ID: ALPS07292593. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 17EXPL: 0CVE-2023-20624
https://notcve.org/view.php?id=CVE-2023-20624
07 Mar 2023 — In vow, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628530; Issue ID: ALPS07628530. • https://corp.mediatek.com/product-security-bulletin/March-2023 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •