Description

In modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is no needed for exploitation. Patch ID: MOLY01270721; Issue ID: MSV-1479.

Related CPE's

o

mediatek

nr16

-

Vulnerable

o

mediatek

nr17

-

Vulnerable

h

mediatek

mt6298

-

h

mediatek

mt6813

-

h

mediatek

mt6815

-

h

mediatek

mt6835

-

h

mediatek

mt6878

-

h

mediatek

mt6879

-

h

mediatek

mt6895

-

h

mediatek

mt6895t

-

h

mediatek

mt6896

-

h

mediatek

mt6897

-

h

mediatek

mt6899

-

h

mediatek

mt6980

-

h

mediatek

mt6980d

-

h

mediatek

mt6983

-

h

mediatek

mt6986

-

h

mediatek

mt6986d

-

h

mediatek

mt6990

-

h

mediatek

mt6991

-

h

mediatek

mt8673

-

h

mediatek

mt8675

-

h

mediatek

mt8771

-

h

mediatek

mt8791t

-

h

mediatek

mt8792

-

h

mediatek

mt8797

-

h

mediatek

mt8798

-

References

https://corp.mediatek.com/product-security-bulletin/June-2024

Vendor Advisory

https://corp.mediatek.com/product-security-bulletin/June-2024

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-787

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

5.9 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-06-03T00:15:08.873Z

1 year ago

Last modified

2025-04-25T16:38:30.833Z

11 months ago