CVSS: 6.7EPSS: 0%CPEs: 40EXPL: 0CVE-2022-21754
https://notcve.org/view.php?id=CVE-2022-21754
06 Jun 2022 — In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535953; Issue ID: ALPS06535953. En WLAN driver, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/June-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 41EXPL: 0CVE-2022-21753
https://notcve.org/view.php?id=CVE-2022-21753
06 Jun 2022 — In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493873; Issue ID: ALPS06493899. En WLAN driver, es posible que se produzca una escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/June-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 41EXPL: 0CVE-2022-21752
https://notcve.org/view.php?id=CVE-2022-21752
06 Jun 2022 — In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493873; Issue ID: ALPS06493873. En WLAN driver, se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/June-2022 • CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 46EXPL: 0CVE-2022-21745
https://notcve.org/view.php?id=CVE-2022-21745
06 Jun 2022 — In WIFI Firmware, there is a possible memory corruption due to a use after free. This could lead to remote escalation of privilege, when devices are connecting to the attacker-controllable Wi-Fi hotspot, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06468872; Issue ID: ALPS06468872. En WIFI Firmware, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/June-2022 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 56EXPL: 0CVE-2022-21743
https://notcve.org/view.php?id=CVE-2022-21743
03 May 2022 — In ion, there is a possible use after free due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06371108; Issue ID: ALPS06371108. En ion, se presenta un posible uso de memoria previamente liberada debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/May-2022 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.4EPSS: 0%CPEs: 56EXPL: 0CVE-2022-20111
https://notcve.org/view.php?id=CVE-2022-20111
03 May 2022 — In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06366069; Issue ID: ALPS06366069. En ion, se presenta un posible uso de memoria previamente liberada debido a un manejo incorrecto de errores. • https://corp.mediatek.com/product-security-bulletin/May-2022 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 6.7EPSS: 0%CPEs: 48EXPL: 0CVE-2022-20089
https://notcve.org/view.php?id=CVE-2022-20089
03 May 2022 — In aee driver, there is a possible memory corruption due to active debug code. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06240397; Issue ID: ALPS06240397. En aee driver, se presenta una posible corrupción de memoria debido al código de depuración activo. • https://corp.mediatek.com/product-security-bulletin/May-2022 •
CVSS: 7.0EPSS: 0%CPEs: 56EXPL: 0CVE-2022-20110
https://notcve.org/view.php?id=CVE-2022-20110
03 May 2022 — In ion, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID: ALPS06399901. En ion, se presenta un posible uso de memoria previamente liberada debido a una condición de carrera. • https://corp.mediatek.com/product-security-bulletin/May-2022 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.8EPSS: 0%CPEs: 56EXPL: 0CVE-2022-20109
https://notcve.org/view.php?id=CVE-2022-20109
03 May 2022 — In ion, there is a possible use after free due to improper update of reference count. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06399915; Issue ID: ALPS06399915. En ion, se presenta un posible uso de memoria previamente liberada debido a la actualización inapropiada del recuento de referencias. • https://corp.mediatek.com/product-security-bulletin/May-2022 •
CVSS: 6.6EPSS: 0%CPEs: 40EXPL: 0CVE-2022-20074
https://notcve.org/view.php?id=CVE-2022-20074
11 Apr 2022 — In preloader (partition), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06183301; Issue ID: ALPS06183301. En preloader (partition), se presenta una posible escritura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/April-2022 • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •