EUVD-2022-26941

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Possible permission bypass in Autoboot may lead to local privilege escalation without user interaction

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2022-21777	6 Jul 202214:15	–	attackerkb
Circl	CVE-2022-21777	6 Jul 202218:14	–	circl
CNNVD	MediaTek Autoboot 访问控制错误漏洞	6 Jul 202200:00	–	cnnvd
CNVD	Multiple MediaTek Chips Autoboot Access Control Error Vulnerability	8 Jul 202200:00	–	cnvd
CVE	CVE-2022-21777	6 Jul 202213:07	–	cve
Cvelist	CVE-2022-21777	6 Jul 202213:07	–	cvelist
NVD	CVE-2022-21777	6 Jul 202214:15	–	nvd
OSV	CVE-2022-21777	6 Jul 202214:15	–	osv
Prion	Design/Logic Flaw	6 Jul 202214:15	–	prion
RedhatCVE	CVE-2022-21777	22 May 202523:44	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "ebf913ad-3e29-3c73-bbb6-678bd8bf7f30",
        "vendor": {
          "name": "MediaTek, Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "5a23fc51-1ea1-3089-b887-64254a52cc4a",
        "product": {
          "name": "MT6580, MT6735, MT6739, MT6761, MT6765, MT6768, MT6771, MT6779, MT6785, MT6833, MT6853, MT6873, MT6875, MT6877, MT6879, MT6885, MT6891, MT6893, MT6895, MT6983, MT8167, MT8167S, MT8168, MT8173, MT8175, MT8185, MT8321, MT8362A, MT8365, MT8385, MT8666, MT8667, MT8675, MT8765, MT8766, MT8768, MT8786, MT8788, MT8789, MT8791, MT8797"
        },
        "product_version": "Android 11.0, 12.0"
      }
    ]
  }
]

Source	Link
corp	www.corp.mediatek.com/product-security-bulletin/July-2022

03 Oct 2025 20:07Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.8

CVSS 24.6

EPSS0.00013