CVSS: 4.9EPSS: 0%CPEs: 6EXPL: 0CVE-2021-25477
https://notcve.org/view.php?id=CVE-2021-25477
An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows modem crash and remote denial of service. Un manejo inapropiado de errores en la pila del protocolo RRC de Mediatek versiones anteriores a SMR Oct-2021 Release 1, permite un bloqueo del módem y una denegación de servicio remota • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0612
https://notcve.org/view.php?id=CVE-2021-0612
In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425834. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0611
https://notcve.org/view.php?id=CVE-2021-0611
In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425810. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0610
https://notcve.org/view.php?id=CVE-2021-0610
In memory management driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05411456. En memory management driver, se presenta una posible corrupción de memoria debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0425
https://notcve.org/view.php?id=CVE-2021-0425
In memory management driver, there is a possible side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05400059. En memory management driver, se presenta una posible divulgación de información de canal lateral. • https://corp.mediatek.com/product-security-bulletin/September-2021 •