CVE-2024-20077

2024-07-0103:18:01

CWE-119

MediaTek

www.cve.org

modem

system crash

remote denial of service

error handling

0.0004 Low

EPSS

Percentile

9.2%

JSON

In Modem, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01297807; Issue ID: MSV-1482.

CNA Affected

[
  {
    "vendor": "MediaTek, Inc.",
    "product": "MT2731, MT6739, MT6761, MT6762, MT6763, MT6765, MT6767, MT6768, MT6769, MT6771, MT8666, MT8667, MT8765, MT8766, MT8768, MT8781, MT8786, MT8788",
    "versions": [
      {
        "version": "Modem LR12A",
        "status": "affected"
      }
    ]
  }
]

References

corp.mediatek.com/product-security-bulletin/July-2024

0.0004 Low

EPSS

Percentile

9.2%

JSON

Related for CVELIST:CVE-2024-20077