CVSS: 5.5EPSS: 0%CPEs: 47EXPL: 0CVE-2023-20824
https://notcve.org/view.php?id=CVE-2023-20824
04 Sep 2023 — In duraspeed, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: ALPS07951402; Issue ID: ALPS07951402. En duraspeed, existe una posible divulgación de información debido a la falta de comprobación de permisos. • https://corp.mediatek.com/product-security-bulletin/September-2023 • CWE-862: Missing Authorization •
CVSS: 4.4EPSS: 0%CPEs: 28EXPL: 0CVE-2023-20812
https://notcve.org/view.php?id=CVE-2023-20812
07 Aug 2023 — In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 36EXPL: 0CVE-2023-20795
https://notcve.org/view.php?id=CVE-2023-20795
07 Aug 2023 — In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07864900; Issue ID: ALPS07864900. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 71EXPL: 0CVE-2023-20790
https://notcve.org/view.php?id=CVE-2023-20790
07 Aug 2023 — In nvram, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07740194; Issue ID: ALPS07740194. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 58EXPL: 0CVE-2023-20784
https://notcve.org/view.php?id=CVE-2023-20784
07 Aug 2023 — In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07826989; Issue ID: ALPS07826989. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 58EXPL: 0CVE-2023-20783
https://notcve.org/view.php?id=CVE-2023-20783
07 Aug 2023 — In keyinstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07826905; Issue ID: ALPS07826905. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 58EXPL: 0CVE-2023-20782
https://notcve.org/view.php?id=CVE-2023-20782
07 Aug 2023 — In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07550104; Issue ID: ALPS07550103. • https://corp.mediatek.com/product-security-bulletin/August-2023 •
CVSS: 4.4EPSS: 0%CPEs: 57EXPL: 0CVE-2023-20781
https://notcve.org/view.php?id=CVE-2023-20781
07 Aug 2023 — In keyinstall, there is a possible memory corruption due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017756; Issue ID: ALPS07905323. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 58EXPL: 0CVE-2023-20780
https://notcve.org/view.php?id=CVE-2023-20780
07 Aug 2023 — In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017756; Issue ID: ALPS08017756. • https://corp.mediatek.com/product-security-bulletin/August-2023 •
CVSS: 6.7EPSS: 0%CPEs: 44EXPL: 0CVE-2023-20768
https://notcve.org/view.php?id=CVE-2023-20768
04 Jul 2023 — In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07559800. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •