CVE-2022-26433
https://notcve.org/view.php?id=CVE-2022-26433
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07138400; Issue ID: ALPS07138400. En mailbox, se presenta una posible escritura fuera de límites debido a una confusión de tipo. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2022-26432
https://notcve.org/view.php?id=CVE-2022-26432
In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032542; Issue ID: ALPS07032542. En mailbox, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-787: Out-of-bounds Write •
CVE-2022-26431
https://notcve.org/view.php?id=CVE-2022-26431
In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032553; Issue ID: ALPS07032553. En mailbox, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-787: Out-of-bounds Write •
CVE-2022-26430
https://notcve.org/view.php?id=CVE-2022-26430
In mailbox, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032521; Issue ID: ALPS07032521. En mailbox, se presenta una posible escritura fuera de límites debido a una confusión de tipo. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-787: Out-of-bounds Write CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVE-2022-26429
https://notcve.org/view.php?id=CVE-2022-26429
In cta, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07025415; Issue ID: ALPS07025415. En cta, se presenta una posible forma de escribir registros de uso de permisos de una aplicación debido a una falta de comprobación de permisos. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-862: Missing Authorization •