CVSS: 6.7EPSS: 0%CPEs: 50EXPL: 0CVE-2022-32607
https://notcve.org/view.php?id=CVE-2022-32607
08 Nov 2022 — In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202891; Issue ID: ALPS07202891. En aee, existe un posible use-after-free debido a la falta de verificación de límites. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-416: Use After Free •
CVSS: 6.7EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32615
https://notcve.org/view.php?id=CVE-2022-32615
08 Nov 2022 — In ccd, there is a possible out of bounds write due to uninitialized data. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07326559; Issue ID: ALPS07326559. En ccd, existe una posible escritura fuera de límites debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-908: Use of Uninitialized Resource •