CVE-2023-20798
4.4
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Exploitability: 0.8 / Impact: 3.6
Source: NVD
Description
In pda, there is a possible out of bounds read due to an incorrect calculation of buffer size. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07147572; Issue ID: ALPS07421076.
Affected (2)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 12.0 |
| Running on/with | Platform Versions |
|---|---|
Mediatek Mt2713 | All versions |
Mediatek Mt6855 | All versions |
Mediatek Mt6879 | All versions |
Mediatek Mt6886 | All versions |
Mediatek Mt6895 | All versions |
Mediatek Mt6983 | All versions |
Mediatek Mt6985 | All versions |
Mediatek Mt8188 | All versions |
Mediatek Mt8195 | All versions |
Mediatek Mt8395 | All versions |
Mediatek Mt8673 | All versions |
Related CWEs
References (2)
Source: security@mediatek.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.