Bluetooth Buffer Overflow Vulnerability in Multiple MediaTek Chips (CNVD-2022-66253)

MediaTek Inc. is the world’s fourth largest fab semiconductor company and a market leader in mobile devices, smart home applications, wireless connectivity technologies and IoT products, with approximately 1.5 billion devices a year with MediaTek chips built into them available around the world. A buffer overflow vulnerability exists in several MediaTek chips for Bluetooth, which stems from a lack of boundary checking in Bluetooth. An attacker could exploit the vulnerability to perform local privilege elevation without user interaction.