CVE-2023-32873
Severity Score
6.7
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08583919; Issue ID: ALPS08304227.
En keyInstall, existe una posible escritura fuera de los límites debido a una verificación de los límites faltantes. Esto podría conducir a una escalada local de privilegios con permisos de ejecución de System necesarios. La interacción del usuario no es necesaria para la explotación. ID de parche: ALPS08583919; ID del problema: ALPS08304227.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-05-16 CVE Reserved
- 2024-05-06 CVE Published
- 2024-05-06 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://corp.mediatek.com/product-security-bulletin/May-2024 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mediatek Search vendor "Mediatek" | Mt6761 Search vendor "Mediatek" for product "Mt6761" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6765 Search vendor "Mediatek" for product "Mt6765" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6768 Search vendor "Mediatek" for product "Mt6768" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6833 Search vendor "Mediatek" for product "Mt6833" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6853 Search vendor "Mediatek" for product "Mt6853" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6855 Search vendor "Mediatek" for product "Mt6855" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6893 Search vendor "Mediatek" for product "Mt6893" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6895 Search vendor "Mediatek" for product "Mt6895" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6983 Search vendor "Mediatek" for product "Mt6983" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8321 Search vendor "Mediatek" for product "Mt8321" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8385 Search vendor "Mediatek" for product "Mt8385" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8755 Search vendor "Mediatek" for product "Mt8755" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8765 Search vendor "Mediatek" for product "Mt8765" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8766 Search vendor "Mediatek" for product "Mt8766" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8768 Search vendor "Mediatek" for product "Mt8768" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8771 Search vendor "Mediatek" for product "Mt8771" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8781 Search vendor "Mediatek" for product "Mt8781" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8786 Search vendor "Mediatek" for product "Mt8786" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8788 Search vendor "Mediatek" for product "Mt8788" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8789 Search vendor "Mediatek" for product "Mt8789" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8791t Search vendor "Mediatek" for product "Mt8791t" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8792 Search vendor "Mediatek" for product "Mt8792" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8795t Search vendor "Mediatek" for product "Mt8795t" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8796 Search vendor "Mediatek" for product "Mt8796" | * | - |
Affected
| ||||||