CVE-2023-20690

2023-07-0401:44:48

MediaTek

www.cve.org

wlan firmware

integer overflow

denial of service

remote

no user interaction

patch id

issue id

EPSS

0.001

Percentile

45.7%

JSON

In wlan firmware, there is possible system crash due to an integer overflow. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07664735; Issue ID: ALPS07664735.

CNA Affected

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT6739, MT8167, MT8168, MT8321, MT8365, MT8385, MT8666, MT8765, MT8788",
    "versions": [
      {
        "version": "Android 11.0, 12.0 / IOT-v23.0 (Yocto 4.0)",
        "status": "affected"
      }
    ]
  }
]

References

corp.mediatek.com/product-security-bulletin/July-2023

EPSS

0.001

Percentile

45.7%

JSON

Related for CVELIST:CVE-2023-20690