CVSS: 6.7EPSS: 0%CPEs: 57EXPL: 0CVE-2023-20754
https://notcve.org/view.php?id=CVE-2023-20754
04 Jul 2023 — In keyinstall, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07563028; Issue ID: ALPS07588343. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 49EXPL: 0CVE-2023-20742
https://notcve.org/view.php?id=CVE-2023-20742
06 Jun 2023 — In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628591; Issue ID: ALPS07628540. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: 49EXPL: 0CVE-2023-20741
https://notcve.org/view.php?id=CVE-2023-20741
06 Jun 2023 — In ril, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628591; Issue ID: ALPS07628606. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 49EXPL: 0CVE-2023-20739
https://notcve.org/view.php?id=CVE-2023-20739
06 Jun 2023 — In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559819; Issue ID: ALPS07559819. • https://corp.mediatek.com/product-security-bulletin/June-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 56EXPL: 0CVE-2023-20697
https://notcve.org/view.php?id=CVE-2023-20697
15 May 2023 — In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07589148; Issue ID: ALPS07589148. • https://corp.mediatek.com/product-security-bulletin/May-2023 • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: 56EXPL: 0CVE-2023-20698
https://notcve.org/view.php?id=CVE-2023-20698
15 May 2023 — In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07589144; Issue ID: ALPS07589144. • https://corp.mediatek.com/product-security-bulletin/May-2023 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 44EXPL: 0CVE-2023-20707
https://notcve.org/view.php?id=CVE-2023-20707
15 May 2023 — In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628556; Issue ID: ALPS07628556. • https://corp.mediatek.com/product-security-bulletin/May-2023 • CWE-20: Improper Input Validation CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 6.7EPSS: 0%CPEs: 54EXPL: 0CVE-2023-20708
https://notcve.org/view.php?id=CVE-2023-20708
15 May 2023 — In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07581655; Issue ID: ALPS07581655. • https://corp.mediatek.com/product-security-bulletin/May-2023 • CWE-20: Improper Input Validation CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 4.4EPSS: 0%CPEs: 54EXPL: 0CVE-2023-20709
https://notcve.org/view.php?id=CVE-2023-20709
15 May 2023 — In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07576951; Issue ID: ALPS07576951. • https://corp.mediatek.com/product-security-bulletin/May-2023 • CWE-20: Improper Input Validation CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 4.4EPSS: 0%CPEs: 54EXPL: 0CVE-2023-20710
https://notcve.org/view.php?id=CVE-2023-20710
15 May 2023 — In keyinstall, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07576935; Issue ID: ALPS07576935. • https://corp.mediatek.com/product-security-bulletin/May-2023 • CWE-20: Improper Input Validation CWE-1284: Improper Validation of Specified Quantity in Input •