CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-31573
https://notcve.org/view.php?id=CVE-2021-31573
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234. • https://corp.mediatek.com/product-security-acknowledgements • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-31575
https://notcve.org/view.php?id=CVE-2021-31575
In Config Manager, there is a possible command injection due to improper input validation. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210009; Issue ID: OSBNB00123234. • https://corp.mediatek.com/product-security-acknowledgements • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-31577
https://notcve.org/view.php?id=CVE-2021-31577
In Boa, there is a possible escalation of privilege due to a missing permission check. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241. • https://corp.mediatek.com/product-security-acknowledgements • CWE-862: Missing Authorization •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-31576
https://notcve.org/view.php?id=CVE-2021-31576
In Boa, there is a possible information disclosure due to a missing permission check. This could lead to remote information disclosure to a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241. • https://corp.mediatek.com/product-security-acknowledgements • CWE-862: Missing Authorization •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-31578
https://notcve.org/view.php?id=CVE-2021-31578
In Boa, there is a possible escalation of privilege due to a stack buffer overflow. This could lead to remote escalation of privilege from a proximal attacker with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: A20210008; Issue ID: OSBNB00123241. • https://corp.mediatek.com/product-security-acknowledgements • CWE-787: Out-of-bounds Write •