Description

In modem 2G RRM, there is a possible system crash due to a heap buffer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00500621; Issue ID: ALPS04964917.

Related CPE's

o

mediatek

modem

2

h

mediatek

mt6739

-

h

mediatek

mt6761

-

h

mediatek

mt6762

-

h

mediatek

mt6762d

-

h

mediatek

mt6762m

-

h

mediatek

mt6763

-

h

mediatek

mt6765

-

h

mediatek

mt6765t

-

h

mediatek

mt6767

-

h

mediatek

mt6768

-

h

mediatek

mt6769

-

h

mediatek

mt6769t

-

h

mediatek

mt6769z

-

h

mediatek

mt6771

-

h

mediatek

mt6779

-

h

mediatek

mt6783

-

h

mediatek

mt6785

-

h

mediatek

mt6785t

-

References

https://corp.mediatek.com/product-security-bulletin/September-2021

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-09-09T16:15:07.593

3 years ago

Last modified

2021-09-21T19:40:52.627

3 years ago