CVE-2024-20021
Severity Score
6.7
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
In atf spm, there is a possible way to remap physical memory to virtual memory due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08584568; Issue ID: MSV-1249.
En atf spm, existe una forma posible de reasignar la memoria física a la memoria virtual debido a un error lógico. Esto podría conducir a una escalada local de privilegios con permisos de ejecución de System necesarios. La interacción del usuario no es necesaria para la explotación. ID de parche: ALPS08584568; ID del problema: MSV-1249.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-11-02 CVE Reserved
- 2024-05-06 CVE Published
- 2024-05-06 EPSS Updated
- 2024-08-01 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-269: Improper Privilege Management
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://corp.mediatek.com/product-security-bulletin/May-2024 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mediatek Search vendor "Mediatek" | Mt6768 Search vendor "Mediatek" for product "Mt6768" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6781 Search vendor "Mediatek" for product "Mt6781" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6785 Search vendor "Mediatek" for product "Mt6785" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6833 Search vendor "Mediatek" for product "Mt6833" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6853 Search vendor "Mediatek" for product "Mt6853" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6873 Search vendor "Mediatek" for product "Mt6873" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6877 Search vendor "Mediatek" for product "Mt6877" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6885 Search vendor "Mediatek" for product "Mt6885" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt6893 Search vendor "Mediatek" for product "Mt6893" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8168 Search vendor "Mediatek" for product "Mt8168" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8183 Search vendor "Mediatek" for product "Mt8183" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8188 Search vendor "Mediatek" for product "Mt8188" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8188t Search vendor "Mediatek" for product "Mt8188t" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8195 Search vendor "Mediatek" for product "Mt8195" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8195z Search vendor "Mediatek" for product "Mt8195z" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8321 Search vendor "Mediatek" for product "Mt8321" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8362a Search vendor "Mediatek" for product "Mt8362a" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8365 Search vendor "Mediatek" for product "Mt8365" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8666 Search vendor "Mediatek" for product "Mt8666" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8666a Search vendor "Mediatek" for product "Mt8666a" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8667 Search vendor "Mediatek" for product "Mt8667" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8673 Search vendor "Mediatek" for product "Mt8673" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8675 Search vendor "Mediatek" for product "Mt8675" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8765 Search vendor "Mediatek" for product "Mt8765" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8766 Search vendor "Mediatek" for product "Mt8766" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8766z Search vendor "Mediatek" for product "Mt8766z" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8768 Search vendor "Mediatek" for product "Mt8768" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8768a Search vendor "Mediatek" for product "Mt8768a" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8768b Search vendor "Mediatek" for product "Mt8768b" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8768t Search vendor "Mediatek" for product "Mt8768t" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8768z Search vendor "Mediatek" for product "Mt8768z" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8781 Search vendor "Mediatek" for product "Mt8781" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8786 Search vendor "Mediatek" for product "Mt8786" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8788 Search vendor "Mediatek" for product "Mt8788" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8788t Search vendor "Mediatek" for product "Mt8788t" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8788x Search vendor "Mediatek" for product "Mt8788x" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8788z Search vendor "Mediatek" for product "Mt8788z" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8792 Search vendor "Mediatek" for product "Mt8792" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8795t Search vendor "Mediatek" for product "Mt8795t" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8796 Search vendor "Mediatek" for product "Mt8796" | * | - |
Affected
| ||||||
| Mediatek Search vendor "Mediatek" | Mt8798 Search vendor "Mediatek" for product "Mt8798" | * | - |
Affected
| ||||||