CVSS: 4.4EPSS: 0%CPEs: 35EXPL: 0CVE-2022-20018
https://notcve.org/view.php?id=CVE-2022-20018
In seninf driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05863018; Issue ID: ALPS05863018. En el controlador seninf, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-908: Use of Uninitialized Resource •
CVSS: 4.4EPSS: 0%CPEs: 26EXPL: 0CVE-2022-20015
https://notcve.org/view.php?id=CVE-2022-20015
In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05862966; Issue ID: ALPS05862966. En el controlador kd_camera_hw, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-908: Use of Uninitialized Resource •
CVSS: 7.5EPSS: 0%CPEs: 53EXPL: 0CVE-2021-40148
https://notcve.org/view.php?id=CVE-2021-40148
In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00716585; Issue ID: ALPS05886933. En el módem EMM, se presenta una posible divulgación de información debido a una falta de cifrado de datos. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 5.5EPSS: 0%CPEs: 60EXPL: 0CVE-2021-0674
https://notcve.org/view.php?id=CVE-2021-0674
In alac decoder, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06064258; Issue ID: ALPS06064237. En el descodificador alac, se presenta una posible lectura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 60EXPL: 0CVE-2021-0675
https://notcve.org/view.php?id=CVE-2021-0675
In alac decoder, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06064258; Issue ID: ALPS06064258. En el decodificador alac, existe una posible escritura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2021 • CWE-787: Out-of-bounds Write •