CVSS: 4.4EPSS: 0%CPEs: 35EXPL: 0CVE-2023-32809
https://notcve.org/view.php?id=CVE-2023-32809
In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849753; Issue ID: ALPS07849753. En bluetooth driver, existe un posible acceso de lectura y escritura a los registros debido a un control de acceso inadecuado de la interfaz de registro. • https://corp.mediatek.com/product-security-bulletin/September-2023 •
CVSS: 4.4EPSS: 0%CPEs: 35EXPL: 0CVE-2023-32808
https://notcve.org/view.php?id=CVE-2023-32808
In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849751; Issue ID: ALPS07849751. En el controlador Bluetooth, existe un posible acceso de lectura y escritura a los registros debido a un control de acceso inadecuado de la interfaz de registro. • https://corp.mediatek.com/product-security-bulletin/September-2023 •
CVSS: 6.7EPSS: 0%CPEs: 34EXPL: 0CVE-2023-32806
https://notcve.org/view.php?id=CVE-2023-32806
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441589; Issue ID: ALPS07441589. En el controlador wlan, existe una posible escritura fuera de límites debido a una validación de entrada incorrecta. • https://corp.mediatek.com/product-security-bulletin/September-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 57EXPL: 0CVE-2023-20833
https://notcve.org/view.php?id=CVE-2023-20833
In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017756; Issue ID: ALPS08017764. En keyinstall, existe una posible divulgación de información debido a una comprobación de límites omitida. • https://corp.mediatek.com/product-security-bulletin/September-2023 • CWE-862: Missing Authorization •
CVSS: 6.7EPSS: 0%CPEs: 42EXPL: 0CVE-2023-20832
https://notcve.org/view.php?id=CVE-2023-20832
In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08014144; Issue ID: ALPS08013530. En gps, existe una posible escritura fuera de los límites debido a una falta de verificación de los límites. • https://corp.mediatek.com/product-security-bulletin/September-2023 • CWE-787: Out-of-bounds Write •