Iot Yocto

iot_yocto

Vendor: Mediatek • 24 CVEs

CVEs (24)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-20839 4Google LinuxLinuxfoundation+1 more 4Android Iot YoctoLinux Kernel+1 more Nov 21, 2024 Sep 4, 2023 N/A· v4 4.2 MEDIUM· v3 N/A· v2 In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitatio...Show more In imgsys, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326409.Show less
CVE-2023-20835 3Google LinuxfoundationMediatek 3Android Iot YoctoYocto Nov 21, 2024 Sep 4, 2023 N/A· v4 6.4 MEDIUM· v3 N/A· v2 In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID:...Show more In camsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07341261; Issue ID: ALPS07326570.Show less
CVE-2023-20812 2Google Mediatek 2Android Iot Yocto Nov 21, 2024 Aug 7, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploi...Show more In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944987; Issue ID: ALPS07944987.Show less
CVE-2023-20673 2Google Mediatek 2Android Iot Yocto Jan 24, 2025 May 15, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In vcu, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: AL...Show more In vcu, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519103; Issue ID: ALPS07519103.Show less

Previous 12