Description

In wlan service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00367704; Issue ID: MSV-1411.

Related CPE's

a

mediatek

software_development_kit

Vulnerable

o

openwrt

openwrt

2

h

mediatek

mt6890

-

h

mediatek

mt7622

-

References

https://corp.mediatek.com/product-security-bulletin/June-2024

Vendor Advisory

https://corp.mediatek.com/product-security-bulletin/June-2024

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-787

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

6.6 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-06-03T00:15:09.420Z

1 year ago

Last modified

2025-04-25T16:38:02.823Z

10 months ago