CVSS: 6.7EPSS: 0%CPEs: 36EXPL: 0CVE-2023-20786
https://notcve.org/view.php?id=CVE-2023-20786
07 Aug 2023 — In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767811; Issue ID: ALPS07767811. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.4EPSS: 0%CPEs: 21EXPL: 0CVE-2023-20785
https://notcve.org/view.php?id=CVE-2023-20785
07 Aug 2023 — In audio, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628524; Issue ID: ALPS07628524. • https://corp.mediatek.com/product-security-bulletin/August-2023 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 16EXPL: 0CVE-2023-20693
https://notcve.org/view.php?id=CVE-2023-20693
04 Jul 2023 — In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664711; Issue ID: ALPS07664711. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 1%CPEs: 11EXPL: 0CVE-2023-20692
https://notcve.org/view.php?id=CVE-2023-20692
04 Jul 2023 — In wlan firmware, there is possible system crash due to an uncaught exception. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664720; Issue ID: ALPS07664720. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.8EPSS: 1%CPEs: 12EXPL: 0CVE-2023-20690
https://notcve.org/view.php?id=CVE-2023-20690
04 Jul 2023 — In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664735; Issue ID: ALPS07664735. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.7EPSS: 0%CPEs: 39EXPL: 0CVE-2023-20775
https://notcve.org/view.php?id=CVE-2023-20775
04 Jul 2023 — In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07978760; Issue ID: ALPS07363410. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.4EPSS: 0%CPEs: 11EXPL: 0CVE-2023-20771
https://notcve.org/view.php?id=CVE-2023-20771
04 Jul 2023 — In display, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07671046; Issue ID: ALPS07671046. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 44EXPL: 0CVE-2023-20768
https://notcve.org/view.php?id=CVE-2023-20768
04 Jul 2023 — In ion, there is a possible out of bounds read due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560720; Issue ID: ALPS07559800. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 6.7EPSS: 0%CPEs: 11EXPL: 0CVE-2023-20767
https://notcve.org/view.php?id=CVE-2023-20767
04 Jul 2023 — In pqframework, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07629585; Issue ID: ALPS07629584. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 55EXPL: 0CVE-2023-20766
https://notcve.org/view.php?id=CVE-2023-20766
04 Jul 2023 — In gps, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573237; Issue ID: ALPS07573202. • https://corp.mediatek.com/product-security-bulletin/July-2023 • CWE-787: Out-of-bounds Write •