Page 43 of 333 results (0.018 seconds)

CVSS: 6.7EPSS: 0%CPEs: 18EXPL: 0

In teei, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664675; Issue ID: ALPS06664675. En teei, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-416: Use After Free •

CVSS: 4.4EPSS: 0%CPEs: 21EXPL: 0

In vow, there is a possible information disclosure due to a symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545473; Issue ID: ALPS06545473. En vow, se presenta una posible divulgación de información debido al seguimiento de un enlace simbólico. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •

CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 0

In cta, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07025415; Issue ID: ALPS07025415. En cta, se presenta una posible forma de escribir registros de uso de permisos de una aplicación debido a una falta de comprobación de permisos. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-862: Missing Authorization •

CVSS: 6.4EPSS: 0%CPEs: 22EXPL: 1

In audio ipi, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06478101; Issue ID: ALPS06478101. En audio ipi, se presenta una posible corrupción de memoria debido a una condición de carrera. • https://github.com/docfate111/CVE-2022-21789 https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 7.8EPSS: 0%CPEs: 43EXPL: 0

In Autoboot, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06713894; Issue ID: ALPS06713894. En Autoboot, Se presenta una posible omisión de permisos debido a una falta de comprobación de permisos. • https://corp.mediatek.com/product-security-bulletin/July-2022 • CWE-862: Missing Authorization •