CVE-2022-32618

2022-11-0800:00:00

MediaTek

www.cve.org

typec

out of bounds write

local privilege escalation

physical access

buffer size

patch id

issue id

EPSS

0.001

Percentile

17.6%

JSON

In typec, there is a possible out of bounds write due to an incorrect calculation of buffer size. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07262454; Issue ID: ALPS07262454.

CNA Affected

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT6833, MT6873, MT6893, MT8798",
    "versions": [
      {
        "version": "Android 11.0, 12.0, 13.0",
        "status": "affected"
      }
    ]
  }
]

References

corp.mediatek.com/product-security-bulletin/November-2022

EPSS

0.001

Percentile

17.6%

JSON

Related for CVELIST:CVE-2022-32618