Lucene search

[email protected]CVE-2022-32666

HistoryJul 04, 2023 - 2:15 a.m.

CVE-2022-32666

2023-07-0402:15:09

[email protected]

web.nvd.nist.gov

wi-fi

low throughput

critical information

misrepresentation

remote denial of service

execution privileges

nvd

cve-2022-32666

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

34.5%

JSON

In Wi-Fi, there is a possible low throughput due to misrepresentation of critical information. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220829014; Issue ID: GN20220829014.

Affected configurations

Vulners

NVD

Node

mediatekiot_yoctoRange<4.0

mediatekmt7603

mediatekmt7613

mediatekmt7615

mediatekmt7622

mediatekmt7628

mediatekmt7629

mediatekmt7915

mediatekmt7916

mediatekmt7981

mediatekmt7986

mediatekmt8365

VendorProductVersionCPE
mediatekiot_yocto*cpe:2.3:a:mediatek:iot_yocto:*:*:*:*:*:*:*:*
mediatekmt7603*cpe:2.3:h:mediatek:mt7603:*:*:*:*:*:*:*:*
mediatekmt7613*cpe:2.3:h:mediatek:mt7613:*:*:*:*:*:*:*:*
mediatekmt7615*cpe:2.3:h:mediatek:mt7615:*:*:*:*:*:*:*:*
mediatekmt7622*cpe:2.3:h:mediatek:mt7622:*:*:*:*:*:*:*:*
mediatekmt7628*cpe:2.3:h:mediatek:mt7628:*:*:*:*:*:*:*:*
mediatekmt7629*cpe:2.3:h:mediatek:mt7629:*:*:*:*:*:*:*:*
mediatekmt7915*cpe:2.3:h:mediatek:mt7915:*:*:*:*:*:*:*:*
mediatekmt7916*cpe:2.3:h:mediatek:mt7916:*:*:*:*:*:*:*:*
mediatekmt7981*cpe:2.3:h:mediatek:mt7981:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mediatek	iot_yocto	*	cpe:2.3:a:mediatek:iot_yocto::::::::
mediatek	mt7603	*	cpe:2.3:h:mediatek:mt7603::::::::
mediatek	mt7613	*	cpe:2.3:h:mediatek:mt7613::::::::
mediatek	mt7615	*	cpe:2.3:h:mediatek:mt7615::::::::
mediatek	mt7622	*	cpe:2.3:h:mediatek:mt7622::::::::
mediatek	mt7628	*	cpe:2.3:h:mediatek:mt7628::::::::
mediatek	mt7629	*	cpe:2.3:h:mediatek:mt7629::::::::
mediatek	mt7915	*	cpe:2.3:h:mediatek:mt7915::::::::
mediatek	mt7916	*	cpe:2.3:h:mediatek:mt7916::::::::
mediatek	mt7981	*	cpe:2.3:h:mediatek:mt7981::::::::

Rows per page:

1-10 of 121

CNA Affected

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT7603, MT7613, MT7615, MT7622, MT7628, MT7629, MT7915, MT7916, MT7981, MT7986, MT8365",
    "versions": [
      {
        "version": "7.6.6.0 / IOT-v23.0 (Yocto 4.0)",
        "status": "affected"
      }
    ]
  }
]

References

corp.mediatek.com/product-security-bulletin/July-2023

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

34.5%

JSON

Related for CVE-2022-32666

cvelist1 prion1 nvd1