Multiple MediaTek chipsaudio DSP input validation error vulnerability

2022-07-0800:00:00

China National Vulnerability Database

www.cnvd.org.cn

0.0004 Low

EPSS

Percentile

5.1%

JSON

MediaTek Inc. is the world’s fourth largest fab semiconductor company and a market leader in mobile devices, smart home applications, wireless connectivity technologies and IoT products, with approximately 1.5 billion units of MediaTek chips built into end products marketed around the world each year. A number of MediaTek chip audio DSPs are vulnerable to an input validation error, which stems from a lack of boundary checking. An attacker could exploit the vulnerability to perform local privilege elevation without requiring user interaction.

CPENameOperatorVersion
MediaTek MT6833 Androideq11.0
MediaTek MT6833 Androideq12.0
MediaTek MT6873 Androideq11.0
MediaTek MT6873 Androideq12.0
MediaTek MT6877 Androideq11.0
MediaTek MT6877 Androideq12.0
MediaTek MT6885 Androideq11.0
MediaTek MT6885 Androideq12.0
MediaTek MT6983 Androideq11.0
MediaTek MT6983 Androideq12.0

Name	Operator	Version
MediaTek MT6833 Android	eq	11.0
MediaTek MT6833 Android	eq	12.0
MediaTek MT6873 Android	eq	11.0
MediaTek MT6873 Android	eq	12.0
MediaTek MT6877 Android	eq	11.0
MediaTek MT6877 Android	eq	12.0
MediaTek MT6885 Android	eq	11.0
MediaTek MT6885 Android	eq	12.0
MediaTek MT6983 Android	eq	11.0
MediaTek MT6983 Android	eq	12.0

Rows per page:

1-10 of 241

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CNVD-2022-66254