CVSS: 9.8EPSS: 0%CPEs: 94EXPL: 0CVE-2023-20819
https://notcve.org/view.php?id=CVE-2023-20819
In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: MOLY01068234; Issue ID: ALPS08010003. En el CDMA PPP protocol, existe una posible escritura fuera de límites debido a una verificación de límites faltantes. • https://corp.mediatek.com/product-security-bulletin/October-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 35EXPL: 0CVE-2023-32809
https://notcve.org/view.php?id=CVE-2023-32809
In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849753; Issue ID: ALPS07849753. En bluetooth driver, existe un posible acceso de lectura y escritura a los registros debido a un control de acceso inadecuado de la interfaz de registro. • https://corp.mediatek.com/product-security-bulletin/September-2023 •
CVSS: 4.4EPSS: 0%CPEs: 35EXPL: 0CVE-2023-32808
https://notcve.org/view.php?id=CVE-2023-32808
In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849751; Issue ID: ALPS07849751. En el controlador Bluetooth, existe un posible acceso de lectura y escritura a los registros debido a un control de acceso inadecuado de la interfaz de registro. • https://corp.mediatek.com/product-security-bulletin/September-2023 •
CVSS: 6.7EPSS: 0%CPEs: 34EXPL: 0CVE-2023-32806
https://notcve.org/view.php?id=CVE-2023-32806
In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441589; Issue ID: ALPS07441589. En el controlador wlan, existe una posible escritura fuera de límites debido a una validación de entrada incorrecta. • https://corp.mediatek.com/product-security-bulletin/September-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 57EXPL: 0CVE-2023-20833
https://notcve.org/view.php?id=CVE-2023-20833
In keyinstall, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08017756; Issue ID: ALPS08017764. En keyinstall, existe una posible divulgación de información debido a una comprobación de límites omitida. • https://corp.mediatek.com/product-security-bulletin/September-2023 • CWE-862: Missing Authorization •