CVSS: 5.5EPSS: 0%CPEs: 78EXPL: 0CVE-2021-0620
https://notcve.org/view.php?id=CVE-2021-0620
In asf extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05489178; Issue ID: ALPS05561381. En asf extractor, se presenta una posible lectura fuera de límites debido a un desbordamiento del búfer de la pila. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 48EXPL: 0CVE-2021-0619
https://notcve.org/view.php?id=CVE-2021-0619
In ape extractor, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05561395; Issue ID: ALPS05561395. En ape extractor, se presenta una posible lectura fuera de límites debido a la falta de comprobación de los límites. • https://corp.mediatek.com/product-security-bulletin/November-2021 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 67EXPL: 0CVE-2021-0672
https://notcve.org/view.php?id=CVE-2021-0672
In Browser app, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-199678035 En la aplicación Browser, existe una posible divulgación de información debido a la falta de comprobación de permisos. Esto podría conducir a la divulgación de información local sin necesidad de privilegios de ejecución adicionales. La interacción del usuario no es necesaria para la explotación.Producto: AndroidVersiones: Android SoCAndroid ID: A-199678035 • https://source.android.com/security/bulletin/2021-11-01 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0612
https://notcve.org/view.php?id=CVE-2021-0612
In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425834. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0611
https://notcve.org/view.php?id=CVE-2021-0611
In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425810. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •