CVSS: 6.7EPSS: 0%CPEs: 13EXPL: 0CVE-2024-20134
https://notcve.org/view.php?id=CVE-2024-20134
02 Dec 2024 — In ril, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09154589; Issue ID: MSV-1866. • https://corp.mediatek.com/product-security-bulletin/December-2024 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 45EXPL: 0CVE-2024-20125
https://notcve.org/view.php?id=CVE-2024-20125
02 Dec 2024 — In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09046782; Issue ID: MSV-1728. In vdec, there is a possible out of bounds write due to a missing bounds check. • https://corp.mediatek.com/product-security-bulletin/December-2024 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 31EXPL: 0CVE-2024-20121
https://notcve.org/view.php?id=CVE-2024-20121
04 Nov 2024 — In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1574. • https://corp.mediatek.com/product-security-bulletin/November-2024 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 31EXPL: 0CVE-2024-20120
https://notcve.org/view.php?id=CVE-2024-20120
04 Nov 2024 — In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; Issue ID: MSV-1575. • https://corp.mediatek.com/product-security-bulletin/November-2024 • CWE-787: Out-of-bounds Write •
CVSS: 6.7EPSS: 0%CPEs: 22EXPL: 0CVE-2024-20119
https://notcve.org/view.php?id=CVE-2024-20119
04 Nov 2024 — In mms, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09062301; Issue ID: MSV-1620. • https://corp.mediatek.com/product-security-bulletin/November-2024 • CWE-123: Write-what-where Condition •
CVSS: 6.7EPSS: 0%CPEs: 23EXPL: 0CVE-2024-20118
https://notcve.org/view.php?id=CVE-2024-20118
04 Nov 2024 — In mms, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09062392; Issue ID: MSV-1621. • https://corp.mediatek.com/product-security-bulletin/November-2024 • CWE-123: Write-what-where Condition •
CVSS: 6.7EPSS: 0%CPEs: 67EXPL: 0CVE-2024-20108
https://notcve.org/view.php?id=CVE-2024-20108
04 Nov 2024 — In atci, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09082988; Issue ID: MSV-1774. • https://corp.mediatek.com/product-security-bulletin/November-2024 • CWE-787: Out-of-bounds Write •
CVSS: 8.4EPSS: 0%CPEs: 25EXPL: 0CVE-2024-20104
https://notcve.org/view.php?id=CVE-2024-20104
04 Nov 2024 — In da, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09073261; Issue ID: MSV-1772. • https://corp.mediatek.com/product-security-bulletin/November-2024 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2024-20089
https://notcve.org/view.php?id=CVE-2024-20089
02 Sep 2024 — In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08861558; Issue ID: MSV-1526. En WLAN, existe una posible denegación de servicio debido a un manejo incorrecto de errores. • https://corp.mediatek.com/product-security-bulletin/September-2024 • CWE-703: Improper Check or Handling of Exceptional Conditions CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 9.8EPSS: 1%CPEs: 30EXPL: 0CVE-2024-20082
https://notcve.org/view.php?id=CVE-2024-20082
14 Aug 2024 — In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01182594; Issue ID: MSV-1529. • https://corp.mediatek.com/product-security-bulletin/August-2024 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •