CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39440
https://notcve.org/view.php?id=CVE-2024-39440
09 Oct 2024 — In DRM service, there is a possible system crash due to null pointer dereference. This could lead to local denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897 •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-39439
https://notcve.org/view.php?id=CVE-2024-39439
09 Oct 2024 — In DRM service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897 •
CVSS: 6.7EPSS: 0%CPEs: 14EXPL: 0CVE-2024-39438
https://notcve.org/view.php?id=CVE-2024-39438
09 Oct 2024 — In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897 •
CVSS: 6.7EPSS: 0%CPEs: 14EXPL: 0CVE-2024-39437
https://notcve.org/view.php?id=CVE-2024-39437
09 Oct 2024 — In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897 •
CVSS: 6.7EPSS: 0%CPEs: 14EXPL: 0CVE-2024-39436
https://notcve.org/view.php?id=CVE-2024-39436
09 Oct 2024 — In linkturbonative service, there is a possible command injection due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. • https://www.unisoc.com/en_us/secy/announcementDetail/1843898270204624897 •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20102
https://notcve.org/view.php?id=CVE-2024-20102
07 Oct 2024 — In wlan driver, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998892; Issue ID: MSV-1601. • https://corp.mediatek.com/product-security-bulletin/October-2024 • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 9EXPL: 0CVE-2024-20099
https://notcve.org/view.php?id=CVE-2024-20099
07 Oct 2024 — In power, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08997492; Issue ID: MSV-1625. • https://corp.mediatek.com/product-security-bulletin/October-2024 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20096
https://notcve.org/view.php?id=CVE-2024-20096
07 Oct 2024 — In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996900; Issue ID: MSV-1635. • https://corp.mediatek.com/product-security-bulletin/October-2024 • CWE-125: Out-of-bounds Read •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-20095
https://notcve.org/view.php?id=CVE-2024-20095
07 Oct 2024 — In m4u, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08996894; Issue ID: MSV-1636. • https://corp.mediatek.com/product-security-bulletin/October-2024 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 3%CPEs: 14EXPL: 0CVE-2024-20103
https://notcve.org/view.php?id=CVE-2024-20103
07 Oct 2024 — In wlan firmware, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09001358; Issue ID: MSV-1599. • https://corp.mediatek.com/product-security-bulletin/October-2024 • CWE-787: Out-of-bounds Write •