CVE-2022-44446
https://notcve.org/view.php?id=CVE-2022-44446
In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services. En el controlador WLAN, existe una posible verificación de los límites faltantes. Esto podría provocar una denegación local de servicio en los servicios WLAN. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-125: Out-of-bounds Read CWE-126: Buffer Over-read •
CVE-2022-38683
https://notcve.org/view.php?id=CVE-2022-38683
In contacts service, there is a missing permission check. This could lead to local denial of service in contacts service with no additional execution privileges needed. En el servicio de contactos, falta una verificación de permiso. Esto podría provocar una denegación de servicio local en el servicio de contactos sin necesidad de privilegios de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/1610118225591336001 • CWE-862: Missing Authorization •
CVE-2022-32636
https://notcve.org/view.php?id=CVE-2022-32636
In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07510064; Issue ID: ALPS07510064. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-787: Out-of-bounds Write •
CVE-2022-32648
https://notcve.org/view.php?id=CVE-2022-32648
In disp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535964; Issue ID: ALPS06535964. En disp, existe un posible use after free debido a una condición de ejecución. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-662: Improper Synchronization •
CVE-2022-32639
https://notcve.org/view.php?id=CVE-2022-32639
In watchdog, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494487; Issue ID: ALPS07494487. • https://corp.mediatek.com/product-security-bulletin/January-2023 • CWE-125: Out-of-bounds Read •