CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-33111 – Improper Validation of Array Index in Audio
https://notcve.org/view.php?id=CVE-2023-33111
01 Apr 2024 — Information disclosure when VI calibration state set by ADSP is greater than MAX_FBSP_STATE in the response payload to AFE calibration command. • https://docs.qualcomm.com/product/publicresources/securitybulletin/april-2024-bulletin.html • CWE-129: Improper Validation of Array Index •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-3130 – Insecure Data Storage leading to sensitive Information disclosure.
https://notcve.org/view.php?id=CVE-2024-3130
01 Apr 2024 — Hard-coded Credentials in CoolKit eWeLlink app are before 5.4.x on Android and IOS allows local attacker to unauthorized access to sensitive data via Decryption algorithm and key obtained after decompiling app Las credenciales codificadas en la aplicación CoolKit eWeLlink son anteriores a 5.4.x en Android e IOS, lo que permite a un atacante local acceder no autorizado a datos confidenciales a través del algoritmo de descifrado y la clave obtenida después de descompilar la aplicación. Hard-coded Credentials ... • https://ewelink.cc/security-advisories-and-notices • CWE-798: Use of Hard-coded Credentials •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20055
https://notcve.org/view.php?id=CVE-2024-20055
01 Apr 2024 — In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20052
https://notcve.org/view.php?id=CVE-2024-20052
01 Apr 2024 — In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20050
https://notcve.org/view.php?id=CVE-2024-20050
01 Apr 2024 — In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20049
https://notcve.org/view.php?id=CVE-2024-20049
01 Apr 2024 — In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 •
CVSS: 6.2EPSS: 0%CPEs: 20EXPL: 0CVE-2024-20048
https://notcve.org/view.php?id=CVE-2024-20048
01 Apr 2024 — In flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 • CWE-248: Uncaught Exception •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20047
https://notcve.org/view.php?id=CVE-2024-20047
01 Apr 2024 — This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.4EPSS: 0%CPEs: -EXPL: 0CVE-2024-20045
https://notcve.org/view.php?id=CVE-2024-20045
01 Apr 2024 — This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 •
CVSS: 4.4EPSS: 0%CPEs: 15EXPL: 0CVE-2024-20041
https://notcve.org/view.php?id=CVE-2024-20041
01 Apr 2024 — This could lead to local information disclosure with System execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/April-2024 • CWE-125: Out-of-bounds Read •