CVSS: 6.7EPSS: 0%CPEs: 24EXPL: 0CVE-2023-32860
https://notcve.org/view.php?id=CVE-2023-32860
04 Dec 2023 — In display, there is a possible classic buffer overflow due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929788; Issue ID: ALPS07929788. En display, hay un posible desbordamiento del búfer clásico debido a una verificación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.7EPSS: 0%CPEs: 46EXPL: 0CVE-2023-32859
https://notcve.org/view.php?id=CVE-2023-32859
04 Dec 2023 — In meta, there is a possible classic buffer overflow due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08000473; Issue ID: ALPS08000473. En meta, existe un posible desbordamiento del búfer clásico debido a una verificación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 4.4EPSS: 0%CPEs: 11EXPL: 0CVE-2023-32858
https://notcve.org/view.php?id=CVE-2023-32858
04 Dec 2023 — In GZ, there is a possible information disclosure due to a missing data erasing. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07806008; Issue ID: ALPS07806008. En GZ existe una posible divulgación de información debido a la falta de eliminación de datos. • https://corp.mediatek.com/product-security-bulletin/December-2023 •
CVSS: 4.4EPSS: 0%CPEs: 16EXPL: 0CVE-2023-32857
https://notcve.org/view.php?id=CVE-2023-32857
04 Dec 2023 — In display, there is a possible out of bounds read due to an incorrect status check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07993705; Issue ID: ALPS07993710. En display, hay una posible lectura fuera de los límites debido a una verificación de estado incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: 16EXPL: 0CVE-2023-32856
https://notcve.org/view.php?id=CVE-2023-32856
04 Dec 2023 — In display, there is a possible out of bounds read due to an incorrect status check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07993705; Issue ID: ALPS07993705. En display, hay una posible lectura fuera de los límites debido a una verificación de estado incorrecta. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 40EXPL: 0CVE-2023-32855
https://notcve.org/view.php?id=CVE-2023-32855
04 Dec 2023 — In aee, there is a possible escalation of privilege due to a missing permission check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07909204; Issue ID: ALPS07909204. En aee, existe una posible escalada de privilegios debido a la falta de una verificación de permisos. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-862: Missing Authorization •
CVSS: 6.7EPSS: 0%CPEs: 21EXPL: 0CVE-2023-32854
https://notcve.org/view.php?id=CVE-2023-32854
04 Dec 2023 — In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08240132; Issue ID: ALPS08240132. En ril, existe una posible escritura fuera de los límites debido a una verificación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 29EXPL: 0CVE-2023-32853
https://notcve.org/view.php?id=CVE-2023-32853
04 Dec 2023 — In rpmb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07648764; Issue ID: ALPS07648764. En rpmb, existe una posible escritura fuera de los límites debido a una comprobación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 4EXPL: 0CVE-2023-32852
https://notcve.org/view.php?id=CVE-2023-32852
04 Dec 2023 — In cameraisp, there is a possible information disclosure due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07670971; Issue ID: ALPS07670971. En cameraisp, existe una posible divulgación de información debido a una validación inadecuada del ingreso. • https://corp.mediatek.com/product-security-bulletin/December-2023 •
CVSS: 6.7EPSS: 0%CPEs: 21EXPL: 0CVE-2023-32849
https://notcve.org/view.php?id=CVE-2023-32849
04 Dec 2023 — In cmdq, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161758; Issue ID: ALPS08161758. En cmdq, existe una posible escritura fuera de los límites debido a una confusión de tipos. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •