CVSS: 6.6EPSS: 0%CPEs: 1EXPL: 0CVE-2022-23728
https://notcve.org/view.php?id=CVE-2022-23728
Attacker can reset the device with AT Command in the process of rebooting the device. The LG ID is LVE-SMP-210011. El atacante puede reiniciar el dispositivo con el comando AT en el proceso de reinicio del dispositivo. El ID de LG es LVE-SMP-210011 • https://lgsecurity.lge.com/bulletins/mobile • CWE-684: Incorrect Provision of Specified Functionality •
CVSS: 5.5EPSS: 0%CPEs: 60EXPL: 0CVE-2021-0674
https://notcve.org/view.php?id=CVE-2021-0674
In alac decoder, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06064258; Issue ID: ALPS06064237. En el descodificador alac, se presenta una posible lectura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: 47EXPL: 0CVE-2021-0676
https://notcve.org/view.php?id=CVE-2021-0676
In geniezone driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05863009; Issue ID: ALPS05863009. En el controlador geniezone, se presenta una posible lectura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2021-0675
https://notcve.org/view.php?id=CVE-2021-0675
In alac decoder, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06064258; Issue ID: ALPS06064258. En el decodificador alac, existe una posible escritura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-787: Out-of-bounds Write •
CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 0CVE-2021-0904
https://notcve.org/view.php?id=CVE-2021-0904
In SRAMROM, there is a possible permission bypass due to an insecure permission setting. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06076938; Issue ID: ALPS06076938. En SRAMROM, existe una posible derivación de permisos debido a una configuración de permisos insegura. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-732: Incorrect Permission Assignment for Critical Resource •