CVE-2024-20022
6.7
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.8 / Impact: 5.9
Source: NVD
Description
In lk, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08528255; Issue ID: ALPS08528255.
Affected (7)
Show all products
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 12.0 | |
| Version 3.3 | |
| Version 19.07.0 | |
| Version 2022q3 |
| Running on/with | Platform Versions |
|---|---|
Mediatek Mt2737 | All versions |
Mediatek Mt6789 | All versions |
Mediatek Mt6835 | All versions |
Mediatek Mt6855 | All versions |
Mediatek Mt6879 | All versions |
Mediatek Mt6880 | All versions |
Mediatek Mt6886 | All versions |
Mediatek Mt6890 | All versions |
Mediatek Mt6895 | All versions |
Mediatek Mt6980 | All versions |
Mediatek Mt6983 | All versions |
Mediatek Mt6985 | All versions |
Mediatek Mt6989 | All versions |
Mediatek Mt6990 | All versions |
Mediatek Mt8321 | All versions |
Mediatek Mt8385 | All versions |
Mediatek Mt8666 | All versions |
Mediatek Mt8667 | All versions |
Mediatek Mt8673 | All versions |
Mediatek Mt8765 | All versions |
Mediatek Mt8766 | All versions |
Mediatek Mt8768 | All versions |
Mediatek Mt8781 | All versions |
Mediatek Mt8786 | All versions |
Mediatek Mt8788 | All versions |
Mediatek Mt8789 | All versions |
Mediatek Mt8791 | All versions |
Mediatek Mt8796 | All versions |
Mediatek Mt8797 | All versions |
Mediatek Mt8798 | All versions |
References (2)
Source: security@mediatek.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.