Description

In modem, there is a possible out of bounds write due to improper input invalidation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01267285; Issue ID: MSV-1462.

Related CPE's

o

mediatek

nr16

-

Vulnerable

o

mediatek

nr17

-

Vulnerable

h

mediatek

mt6813

-

h

mediatek

mt6815

-

h

mediatek

mt6835

-

h

mediatek

mt6878

-

h

mediatek

mt6897

-

h

mediatek

mt6899

-

h

mediatek

mt6986

-

h

mediatek

mt6986d

-

h

mediatek

mt6991

-

h

mediatek

mt8792

-

References

https://corp.mediatek.com/product-security-bulletin/June-2024

Vendor Advisory

https://corp.mediatek.com/product-security-bulletin/June-2024

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-787

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 · Critical

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-06-03T00:15:08.770Z

1 year ago

Last modified

2025-04-25T16:39:01.213Z

8 months ago