CVE-2024-20018

2024-03-0403:15:07

[email protected]

web.nvd.nist.gov

cve-2024-20018

out of bounds write

wlan driver

privilege escalation

input validation

nvd

security patch

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

8.7%

JSON

In wlan driver, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00348479; Issue ID: MSV-1019.

VendorProductVersionCPE
mediateknbiot_sdk*cpe:2.3:a:mediatek:nbiot_sdk:*:*:*:*:*:*:*:*
mediatekmt7615*cpe:2.3:h:mediatek:mt7615:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mediatek	nbiot_sdk	*	cpe:2.3:a:mediatek:nbiot_sdk::::::::
mediatek	mt7615	*	cpe:2.3:h:mediatek:mt7615::::::::

References

corp.mediatek.com/product-security-bulletin/March-2024