Multiple MediaTek chips compete for conditional vulnerabilities

MediaTek Inc. is the world’s fourth largest fab semiconductor company and a market leader in mobile devices, smart home applications, wireless connectivity technologies and IoT products, with approximately 1.5 billion devices with MediaTek chips built into them hitting the market around the world a year. A competitive condition vulnerability exists in the MDP of several MediaTek chips. The vulnerability stems from improper handling of concurrent access when concurrent code needs to access shared resources mutually exclusive during the operation of a networked system or product. An attacker could exploit the vulnerability to perform local privilege elevation without requiring user interaction.