CVSS: 6.7EPSS: 0%CPEs: 24EXPL: 0CVE-2023-20737
https://notcve.org/view.php?id=CVE-2023-20737
In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645167. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-667: Improper Locking •
CVSS: 6.4EPSS: 0%CPEs: 24EXPL: 0CVE-2023-20736
https://notcve.org/view.php?id=CVE-2023-20736
In vcu, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645189. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 50EXPL: 0CVE-2023-20735
https://notcve.org/view.php?id=CVE-2023-20735
In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645178. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 42EXPL: 0CVE-2023-20734
https://notcve.org/view.php?id=CVE-2023-20734
In vcu, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645184. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 24EXPL: 0CVE-2023-20733
https://notcve.org/view.php?id=CVE-2023-20733
In vcu, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07645149; Issue ID: ALPS07645149. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-667: Improper Locking •