CVSS: 6.7EPSS: 0%CPEs: 60EXPL: 0CVE-2022-32654
https://notcve.org/view.php?id=CVE-2022-32654
In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220705011; Issue ID: GN20220705011. • https://corp.mediatek.com/product-security-bulletin/February-2023 •
CVSS: 6.7EPSS: 0%CPEs: 38EXPL: 0CVE-2022-32632
https://notcve.org/view.php?id=CVE-2022-32632
In Wi-Fi, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441630; Issue ID: ALPS07441630. En Wi-Fi, existe una posible escritura fuera de los límites debido a una validación de entrada incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 53EXPL: 0CVE-2022-32633
https://notcve.org/view.php?id=CVE-2022-32633
In Wi-Fi, there is a possible memory access violation due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441637; Issue ID: ALPS07441637. En Wi-Fi, existe una posible violación de acceso a la memoria debido a un error lógico. • https://corp.mediatek.com/product-security-bulletin/December-2022 • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: 50EXPL: 0CVE-2022-32607
https://notcve.org/view.php?id=CVE-2022-32607
In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202891; Issue ID: ALPS07202891. En aee, existe un posible use-after-free debido a la falta de verificación de límites. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-416: Use After Free •
CVSS: 6.4EPSS: 0%CPEs: 35EXPL: 0CVE-2022-32613
https://notcve.org/view.php?id=CVE-2022-32613
In vcu, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07206340; Issue ID: ALPS07206340. En vcu, existe una posible corrupción de la memoria debido a una condición de ejecución. • https://corp.mediatek.com/product-security-bulletin/November-2022 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •