CVSS: 6.7EPSS: 0%CPEs: 49EXPL: 0CVE-2022-32590
https://notcve.org/view.php?id=CVE-2022-32590
07 Oct 2022 — In wlan, there is a possible use after free due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07299425; Issue ID: ALPS07299425. En wlan, se presenta un posible uso después de libre debido a una comprobación de estado incorrecta. • https://corp.mediatek.com/product-security-bulletin/October-2022 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 6.7EPSS: 0%CPEs: 44EXPL: 0CVE-2022-26475
https://notcve.org/view.php?id=CVE-2022-26475
07 Oct 2022 — In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310743; Issue ID: ALPS07310743. En wlan, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/October-2022 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 45EXPL: 0CVE-2022-32589
https://notcve.org/view.php?id=CVE-2022-32589
07 Oct 2022 — In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07030600; Issue ID: ALPS07030600. En Wi-Fi driver, se presenta una posible forma de desconectar el Wi-Fi debido a una liberación inapropiada de recursos. • https://corp.mediatek.com/product-security-bulletin/October-2022 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 6.5EPSS: 0%CPEs: 59EXPL: 0CVE-2022-20023
https://notcve.org/view.php?id=CVE-2022-20023
04 Jan 2022 — In Bluetooth, there is a possible application crash due to bluetooth flooding a device with LMP_AU_rand packet. This could lead to remote denial of service of bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06198608; Issue ID: ALPS06198608. En Bluetooth, se presenta un posible bloqueo de la aplicación debido a que bluetooth inunda un dispositivo con el paquete LMP_AU_rand. • https://corp.mediatek.com/product-security-bulletin/January-2022 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 30EXPL: 0CVE-2022-20022
https://notcve.org/view.php?id=CVE-2022-20022
04 Jan 2022 — In Bluetooth, there is a possible link disconnection due to bluetooth does not properly handle a connection attempt from a host with the same BD address as the currently connected BT host. This could lead to remote denial of service of bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06198578; Issue ID: ALPS06198578. En Bluetooth, se presenta una posible desconexión del enlace debido a que bluetooth no maneja apropiadamente un intento d... • https://corp.mediatek.com/product-security-bulletin/January-2022 •
CVSS: 6.5EPSS: 0%CPEs: 31EXPL: 0CVE-2022-20021
https://notcve.org/view.php?id=CVE-2022-20021
04 Jan 2022 — In Bluetooth, there is a possible application crash due to bluetooth does not properly handle the reception of multiple LMP_host_connection_req. This could lead to remote denial of service of bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06198513; Issue ID: ALPS06198513. En Bluetooth, se presenta un posible bloqueo de la aplicación debido a que bluetooth no maneja apropiadamente la recepción de múltiples LMP_host_connection_req. • https://corp.mediatek.com/product-security-bulletin/January-2022 •