CVE-2023-32857

2023-12-0403:45:56

MediaTek

www.cve.org

display

out of bounds

local information disclosure

system execution

patch alps07993705

issue alps07993710

AI Score

4.6

Confidence

High

EPSS

Percentile

5.1%

JSON

In display, there is a possible out of bounds read due to an incorrect status check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07993705; Issue ID: ALPS07993710.

CNA Affected

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT6765, MT6768, MT6833, MT6879, MT6883, MT6885, MT6889, MT6893, MT6983, MT6985, MT8188, MT8195, MT8797, MT8798",
    "versions": [
      {
        "version": "Android 12.0, 13.0",
        "status": "affected"
      }
    ]
  }
]

References

corp.mediatek.com/product-security-bulletin/December-2023