CVSS: 6.7EPSS: 0%CPEs: 18EXPL: 0CVE-2022-26453
https://notcve.org/view.php?id=CVE-2022-26453
In teei, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664675; Issue ID: ALPS06664675. En teei, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-416: Use After Free •
CVSS: 4.4EPSS: 0%CPEs: 21EXPL: 0CVE-2022-26456
https://notcve.org/view.php?id=CVE-2022-26456
In vow, there is a possible information disclosure due to a symbolic link following. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545473; Issue ID: ALPS06545473. En vow, se presenta una posible divulgación de información debido al seguimiento de un enlace simbólico. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2022-26455
https://notcve.org/view.php?id=CVE-2022-26455
In gz, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177858; Issue ID: ALPS07177858. En gz, se presenta una posible corrupción de memoria debido a un manejo incorrecto de errores. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 8EXPL: 0CVE-2022-26451
https://notcve.org/view.php?id=CVE-2022-26451
In ged, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202966; Issue ID: ALPS07202966. En ged, se presenta un posible uso de memoria previamente liberada debido a un bloqueo inapropiado. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-667: Improper Locking •
CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2022-26450
https://notcve.org/view.php?id=CVE-2022-26450
In apusys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07177801; Issue ID: ALPS07177801. En apusys, se presenta un posible uso de memoria previamente liberada debido a una condición de carrera. • https://corp.mediatek.com/product-security-bulletin/September-2022 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •