
CVE-2023-32851
https://notcve.org/view.php?id=CVE-2023-32851
04 Dec 2023 — In decoder, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08016652; Issue ID: ALPS08016652. En decoder, existe una posible escritura fuera de los límites debido a una verificación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •

CVE-2023-32850
https://notcve.org/view.php?id=CVE-2023-32850
04 Dec 2023 — In decoder, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08016659; Issue ID: ALPS08016659. En decoder, existe una posible escritura fuera de los límites debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •

CVE-2023-32848
https://notcve.org/view.php?id=CVE-2023-32848
04 Dec 2023 — In vdec, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08163896; Issue ID: ALPS08163896. En vdec, existe una posible escritura fuera de los límites debido a confusión de tipos. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •

CVE-2023-32847
https://notcve.org/view.php?id=CVE-2023-32847
04 Dec 2023 — In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08241940; Issue ID: ALPS08241940. En audio, hay una posible escritura fuera de los límites debido a una verificación de los límites faltantes. • https://corp.mediatek.com/product-security-bulletin/December-2023 • CWE-787: Out-of-bounds Write •

CVE-2023-42749
https://notcve.org/view.php?id=CVE-2023-42749
04 Dec 2023 — In enginnermode service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed En enginnermode service, existe una forma posible de escribir registros de uso de permisos de una aplicación debido a que falta una verificación de permisos. Esto podría conducir a la divulgación de información local sin necesidad de privilegios de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVE-2023-42748
https://notcve.org/view.php?id=CVE-2023-42748
04 Dec 2023 — In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed En telecom service, es posible que falte una verificación de permiso. Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVE-2023-42747
https://notcve.org/view.php?id=CVE-2023-42747
04 Dec 2023 — In camera service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed En camera service, es posible que falte una verificación de permiso. Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVE-2023-42746
https://notcve.org/view.php?id=CVE-2023-42746
04 Dec 2023 — In power manager, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed En power manager, es posible que falte una verificación de permiso. Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVE-2023-42745
https://notcve.org/view.php?id=CVE-2023-42745
04 Dec 2023 — In telecom service, there is a possible missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed En telecom service, es posible que falte una verificación de permiso. Esto podría conducir a una escalada local de privilegios sin necesidad de permisos de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •

CVE-2023-42744
https://notcve.org/view.php?id=CVE-2023-42744
04 Dec 2023 — In telecom service, there is a possible missing permission check. This could lead to local denial of service with no additional execution privileges needed En telecom service, es posible que falte una verificación de permiso. Esto podría provocar una denegación de servicio local sin necesidad de privilegios de ejecución adicionales. • https://www.unisoc.com/en_us/secy/announcementDetail/https://www.unisoc.com/en_us/secy/announcementDetail/1731138365803266049 • CWE-862: Missing Authorization •