EUVD-2023-24897

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Possible out of bounds write in VCU could lead to local privilege escalation without user interaction.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2023-20718	24 Jan 202517:05	–	circl
CNNVD	MediaTek 芯片输入验证错误漏洞	15 May 202300:00	–	cnnvd
CVE	CVE-2023-20718	15 May 202300:00	–	cve
Cvelist	CVE-2023-20718	15 May 202300:00	–	cvelist
NVD	CVE-2023-20718	15 May 202322:15	–	nvd
Prion	Out-of-bounds	15 May 202322:15	–	prion
RedhatCVE	CVE-2023-20718	23 May 202502:59	–	redhatcve
Vulnrichment	CVE-2023-20718	15 May 202300:00	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "e6467f1d-8cf3-3365-bbea-d6b7dc8c4d81",
        "vendor": {
          "name": "MediaTek, Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "cbcca675-195a-394e-95c4-8bcfdc2b8b7d",
        "product": {
          "name": "MT6768, MT6769, MT6779, MT6781, MT6785, MT6789, MT6833, MT6853, MT6853T, MT6855, MT6873, MT6875, MT6877, MT6883, MT6885, MT6889, MT6891, MT6893, MT8168, MT8175, MT8195, MT8365, MT8395, MT8673, MT8781, MT8786, MT8789, MT8791T, MT8797"
        },
        "product_version": "Android 11.0, 12.0, 13.0 / Iot-Yocto 22.2 (Yocto 4.0)"
      }
    ]
  }
]

Source	Link
corp	www.corp.mediatek.com/product-security-bulletin/May-2023

03 Oct 2025 20:07Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.16.7

EPSS0.00015

SSVC