CVE-2022-20111

2022-05-0320:06:29

MediaTek

www.cve.org

0.0005 Low

EPSS

Percentile

17.8%

JSON

In ion, there is a possible use after free due to incorrect error handling. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06366069; Issue ID: ALPS06366069.

CNA Affected

[
  {
    "product": "MT6580, MT6735, MT6737, MT6739, MT6750, MT6750S, MT6753, MT6757, MT6757C, MT6757CD, MT6757CH, MT6761, MT6762, MT6763, MT6765, MT6768, MT6769, MT6771, MT6779, MT6781, MT6785, MT6797, MT6833, MT6853, MT6853T, MT6873, MT6875, MT6877, MT6883, MT6885, MT6889, MT6893, MT8167, MT8168, MT8173, MT8185, MT8321, MT8362A, MT8365, MT8385, MT8666, MT8675, MT8695, MT8696, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797",
    "vendor": "MediaTek, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "Android 9.0, 10.0, 11.0, 12.0"
      }
    ]
  }
]

References

corp.mediatek.com/product-security-bulletin/May-2022

0.0005 Low

EPSS

Percentile

17.8%

JSON

Related for CVELIST:CVE-2022-20111