CVSS: 4.4EPSS: 0%CPEs: 16EXPL: 0CVE-2022-26459
https://notcve.org/view.php?id=CVE-2022-26459
In vow, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032634; Issue ID: ALPS07032634. En vow, se presenta una posible lectura fuera de límites debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-190: Integer Overflow or Wraparound •
CVSS: 4.4EPSS: 0%CPEs: 21EXPL: 0CVE-2022-26456
https://notcve.org/view.php?id=CVE-2022-26456
In vow, there is a possible information disclosure due to a symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545473; Issue ID: ALPS06545473. En vow, se presenta una posible divulgación de información debido al seguimiento de un enlace simbólico. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2022-26455
https://notcve.org/view.php?id=CVE-2022-26455
In gz, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177858; Issue ID: ALPS07177858. En gz, se presenta una posible corrupción de memoria debido a un manejo incorrecto de errores. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 8EXPL: 0CVE-2022-26451
https://notcve.org/view.php?id=CVE-2022-26451
In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966. En ged, se presenta un posible uso de memoria previamente liberada debido a un bloqueo inapropiado. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-667: Improper Locking •
CVSS: 4.4EPSS: 0%CPEs: 5EXPL: 0CVE-2022-26436
https://notcve.org/view.php?id=CVE-2022-26436
In emi mpu, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07023666; Issue ID: ALPS07023666. En emi mpu, se presenta una posible lectura fuera de límites debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/August-2022 • CWE-125: Out-of-bounds Read •