Lucene search
HistoryJul 01, 2024 - 5:15 a.m.
CVE-2024-20078
venc
out of bounds write
local privilege escalation
system execution privileges
In venc, there is a possible out of bounds write due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08737250; Issue ID: MSV-1452.
Affected configurations
Node
googleandroidRange<12.0
ORgoogleandroidRange<13.0
ORgoogleandroidRange<14.0
mediatekmt6768
ORmediatekmt6779
ORmediatekmt8321
ORmediatekmt8385
ORmediatekmt8755
ORmediatekmt8765
ORmediatekmt8766
ORmediatekmt8768
ORmediatekmt8771
ORmediatekmt8775
ORmediatekmt8781
ORmediatekmt8786
ORmediatekmt8788
ORmediatekmt8789
ORmediatekmt8791t
ORmediatekmt8792
ORmediatekmt8795t
ORmediatekmt8796
ORmediatekmt8797
ORmediatekmt8798
CNA Affected
[
{
"vendor": "MediaTek, Inc.",
"product": "MT6768, MT6779, MT8321, MT8385, MT8755, MT8765, MT8766, MT8768, MT8771, MT8775, MT8781, MT8786, MT8788, MT8789, MT8791T, MT8792, MT8795T, MT8796, MT8797, MT8798",
"versions": [
{
"version": "Android 12.0, 13.0, 14.0",
"status": "affected"
}
]
}
]Related
cvelist
cvelist
CVE-2024-20078
2024-07-01 03:18:04
nvd
nvd
CVE-2024-20078
2024-07-01 05:15:04
vulnrichment
vulnrichment
CVE-2024-20078
2024-07-01 03:18:04