CVSS: 6.7EPSS: 0%CPEs: 46EXPL: 0CVE-2023-20616
https://notcve.org/view.php?id=CVE-2023-20616
06 Feb 2023 — In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07560720. • https://corp.mediatek.com/product-security-bulletin/February-2023 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 6.7EPSS: 0%CPEs: 53EXPL: 0CVE-2022-32633
https://notcve.org/view.php?id=CVE-2022-32633
05 Dec 2022 — In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441637; Issue ID: ALPS07441637. En Wi-Fi, existe una posible violación de acceso a la memoria debido a un error lógico. • https://corp.mediatek.com/product-security-bulletin/December-2022 • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: 19EXPL: 0CVE-2022-21778
https://notcve.org/view.php?id=CVE-2022-21778
08 Nov 2022 — In vpu, there is a possible information disclosure due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06382421; Issue ID: ALPS06382421. En vpu, existe una posible divulgación de información debido a una verificación de los límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0CVE-2022-32602
https://notcve.org/view.php?id=CVE-2022-32602
08 Nov 2022 — In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07388790; Issue ID: ALPS07388790. En keyinstall, existe una posible lectura fuera de los límites debido a una comprobación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 49EXPL: 0CVE-2022-32590
https://notcve.org/view.php?id=CVE-2022-32590
07 Oct 2022 — In wlan, there is a possible use after free due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07299425; Issue ID: ALPS07299425. En wlan, se presenta un posible uso después de libre debido a una comprobación de estado incorrecta. • https://corp.mediatek.com/product-security-bulletin/October-2022 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 6.7EPSS: 0%CPEs: 44EXPL: 0CVE-2022-26475
https://notcve.org/view.php?id=CVE-2022-26475
07 Oct 2022 — In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310743; Issue ID: ALPS07310743. En wlan, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/October-2022 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 45EXPL: 0CVE-2022-32589
https://notcve.org/view.php?id=CVE-2022-32589
07 Oct 2022 — In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07030600; Issue ID: ALPS07030600. En Wi-Fi driver, se presenta una posible forma de desconectar el Wi-Fi debido a una liberación inapropiada de recursos. • https://corp.mediatek.com/product-security-bulletin/October-2022 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 7.2EPSS: 0%CPEs: 46EXPL: 0CVE-2022-26468
https://notcve.org/view.php?id=CVE-2022-26468
06 Sep 2022 — In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07168125; Issue ID: ALPS07168125. En preloader (usb), se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 39EXPL: 0CVE-2022-26467
https://notcve.org/view.php?id=CVE-2022-26467
06 Sep 2022 — In rpmb, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07167738; Issue ID: ALPS07167738. En rpmb, se presenta una posible escritura fuera de límites debido a una comprobación de límites incorrecta. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 2%CPEs: 29EXPL: 0CVE-2022-26447
https://notcve.org/view.php?id=CVE-2022-26447
06 Sep 2022 — In BT firmware, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06784478; Issue ID: ALPS06784478. En BT firmware, es posible que se produzca una escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-787: Out-of-bounds Write •