CVSS: 5.5EPSS: 0%CPEs: 48EXPL: 0CVE-2021-0619
https://notcve.org/view.php?id=CVE-2021-0619
18 Nov 2021 — In ape extractor, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561395; Issue ID: ALPS05561395. En ape extractor, se presenta una posible lectura fuera de límites debido a la falta de comprobación de los límites. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 67EXPL: 0CVE-2021-0672
https://notcve.org/view.php?id=CVE-2021-0672
18 Nov 2021 — In Browser app, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-199678035 En la aplicación Browser, existe una posible divulgación de información debido a la falta de comprobación de permisos. Esto podría conducir a la divulgación de información local sin necesidad de privilegios de eje... • https://source.android.com/security/bulletin/2021-11-01 • CWE-862: Missing Authorization •
CVSS: 4.9EPSS: 0%CPEs: 6EXPL: 0CVE-2021-25477
https://notcve.org/view.php?id=CVE-2021-25477
06 Oct 2021 — An improper error handling in Mediatek RRC Protocol stack prior to SMR Oct-2021 Release 1 allows modem crash and remote denial of service. Un manejo inapropiado de errores en la pila del protocolo RRC de Mediatek versiones anteriores a SMR Oct-2021 Release 1, permite un bloqueo del módem y una denegación de servicio remota • https://security.samsungmobile.com/securityUpdate.smsb?year=2021&month=10 • CWE-415: Double Free •
CVSS: 4.9EPSS: 0%CPEs: 6EXPL: 0CVE-2021-0660
https://notcve.org/view.php?id=CVE-2021-0660
27 Sep 2021 — In ccu, there is a possible out of bounds read due to incorrect error handling. This could lead to information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05827145; Issue ID: ALPS05827145. En ccu, hay una posible lectura fuera de límites debido a un manejo incorrecto de errores. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0612
https://notcve.org/view.php?id=CVE-2021-0612
27 Sep 2021 — In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425834. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0611
https://notcve.org/view.php?id=CVE-2021-0611
27 Sep 2021 — In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425810. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0610
https://notcve.org/view.php?id=CVE-2021-0610
27 Sep 2021 — In memory management driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05411456. En memory management driver, se presenta una posible corrupción de memoria debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0425
https://notcve.org/view.php?id=CVE-2021-0425
27 Sep 2021 — In memory management driver, there is a possible side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05400059. En memory management driver, se presenta una posible divulgación de información de canal lateral. • https://corp.mediatek.com/product-security-bulletin/September-2021 •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0424
https://notcve.org/view.php?id=CVE-2021-0424
27 Sep 2021 — In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05393787. En memory management driver, es posible que se produzca un bloqueo del sistema debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0423
https://notcve.org/view.php?id=CVE-2021-0423
27 Sep 2021 — In memory management driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05385714. En memory management driver, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-665: Improper Initialization •