Iot Yocto

iot_yocto

Vendor: Mediatek • 24 CVEs

CVEs (24)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-20721 2Google Mediatek 2Android Iot Yocto Oct 15, 2025 Oct 14, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is no...Show more In imgsensor, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10089545; Issue ID: MSV-4279.Show less
CVE-2024-20100 2Google Mediatek 3Android Iot YoctoSoftware Development Kit Apr 25, 2025 Oct 7, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploi...Show more In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08998449; Issue ID: MSV-1603.Show less
CVE-2024-20055 3Google LinuxfoundationMediatek 3Android Iot YoctoYocto Apr 23, 2025 Apr 1, 2024 N/A· v4 6.3 MEDIUM· v3 N/A· v2 In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Pa...Show more In imgsys, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation Patch ID: ALPS08518692; Issue ID: MSV-1012.Show less
CVE-2023-32829 3Google LinuxfoundationMediatek 3Android Iot YoctoYocto Nov 21, 2024 Oct 2, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Pa...Show more In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478.Show less
CVE-2023-32828 2Google Mediatek 2Android Iot Yocto Nov 21, 2024 Oct 2, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch...Show more In vpu, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07767817; Issue ID: ALPS07767817.Show less
CVE-2023-32820 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Oct 2, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for expl...Show more In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637.Show less
CVE-2023-32811 3Google LinuxfoundationMediatek 3Android Iot YoctoYocto Nov 21, 2024 Sep 4, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not n...Show more In connectivity system driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07929848; Issue ID: ALPS07929848.Show less
CVE-2023-32807 3Google LinuxfoundationMediatek 3Android Iot YoctoYocto Nov 21, 2024 Sep 4, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploi...Show more In wlan service, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07588360; Issue ID: ALPS07588360.Show less
CVE-2023-32806 4Google LinuxfoundationMediatek+1 more 4Android Iot YoctoOpenwrt+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for explo...Show more In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07441589; Issue ID: ALPS07441589.Show less
CVE-2023-20850 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for expl...Show more In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340381.Show less
CVE-2023-20849 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitat...Show more In imgsys_cmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340350.Show less
CVE-2023-20848 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for explo...Show more In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340433.Show less
CVE-2023-20847 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 4.2 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of service with System execution privileges needed. User interaction is needed for exploitatio...Show more In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local denial of service with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354025; Issue ID: ALPS07340108.Show less
CVE-2023-20846 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 4.2 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploi...Show more In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354023; Issue ID: ALPS07340098.Show less
CVE-2023-20845 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 4.2 MEDIUM· v3 N/A· v2 In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitatio...Show more In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07197795; Issue ID: ALPS07340357.Show less
CVE-2023-20844 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 4.2 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploi...Show more In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354058; Issue ID: ALPS07340121.Show less
CVE-2023-20843 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 4.2 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploi...Show more In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340119; Issue ID: ALPS07340119.Show less
CVE-2023-20842 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for expl...Show more In imgsys_cmdq, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354259; Issue ID: ALPS07340477.Show less
CVE-2023-20841 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitat...Show more In imgsys, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326441.Show less
CVE-2023-20840 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for...Show more In imgsys, there is a possible out of bounds read and write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326430; Issue ID: ALPS07326430.Show less

12 Next