CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32642
https://notcve.org/view.php?id=CVE-2022-32642
In ccd, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07326547; Issue ID: ALPS07326547. • https://corp.mediatek.com/product-security-bulletin/February-2023 • CWE-662: Improper Synchronization •
CVSS: 6.7EPSS: 0%CPEs: 39EXPL: 0CVE-2023-20612
https://notcve.org/view.php?id=CVE-2023-20612
In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629571; Issue ID: ALPS07629571. • https://corp.mediatek.com/product-security-bulletin/February-2023 • CWE-20: Improper Input Validation •
CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32643
https://notcve.org/view.php?id=CVE-2022-32643
In ccd, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341261; Issue ID: ALPS07341261. • https://corp.mediatek.com/product-security-bulletin/February-2023 • CWE-662: Improper Synchronization •
CVSS: 6.7EPSS: 0%CPEs: 28EXPL: 0CVE-2023-20602
https://notcve.org/view.php?id=CVE-2023-20602
In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07494107; Issue ID: ALPS07494107. • https://corp.mediatek.com/product-security-bulletin/February-2023 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.4EPSS: 0%CPEs: 5EXPL: 0CVE-2023-20606
https://notcve.org/view.php?id=CVE-2023-20606
In apusys, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07571104; Issue ID: ALPS07571104. • https://corp.mediatek.com/product-security-bulletin/February-2023 • CWE-20: Improper Input Validation •