CVE-2024-20147
5.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Exploitability: 3.9 / Impact: 1.4
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
Description
In Bluetooth FW, there is a possible reachable assertion due to improper exception handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00389046 (Note: For MT79XX chipsets) / ALPS09136501 (Note: For MT2737, MT3603, MT6XXX, and MT8XXX chipsets); Issue ID: MSV-1797.
Affected (8)
Show all products
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 13.0 | |
| Version 3.3 | |
| Up to 3.5 | |
| Version 23.05 |
| Running on/with | Platform Versions |
|---|---|
Mediatek Mt2737 | All versions |
Mediatek Mt3603 | All versions |
Mediatek Mt6835 | All versions |
Mediatek Mt6878 | All versions |
Mediatek Mt6886 | All versions |
Mediatek Mt6897 | All versions |
Mediatek Mt6985 | All versions |
Mediatek Mt6989 | All versions |
Mediatek Mt6990 | All versions |
Mediatek Mt7902 | All versions |
Mediatek Mt7920 | All versions |
Mediatek Mt7921 | All versions |
Mediatek Mt7922 | All versions |
Mediatek Mt7925 | All versions |
Mediatek Mt7927 | All versions |
Mediatek Mt8195 | All versions |
Mediatek Mt8370 | All versions |
Mediatek Mt8390 | All versions |
Mediatek Mt8395 | All versions |
Mediatek Mt8518s | All versions |
Mediatek Mt8532 | All versions |
Mediatek Mt8678 | All versions |
References (1)
Source: security@mediatek.com
Vendor Advisory
Timeline
No history available yet.