Lucene search

[email protected]NVD:CVE-2022-21749

HistoryJun 06, 2022 - 6:15 p.m.

CVE-2022-21749

2022-06-0618:15:08

CWE-862

[email protected]

web.nvd.nist.gov

telephony

information disclosure

user interaction

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

5.1%

JSON

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06511058; Issue ID: ALPS06511058.

Affected configurations

Nvd

Node

googleandroidMatch11.0

googleandroidMatch12.0

AND

mediatekmt6739Match-

mediatekmt6750Match-

mediatekmt6750sMatch-

mediatekmt6752Match-

mediatekmt6753Match-

mediatekmt6755Match-

mediatekmt6755sMatch-

mediatekmt6757Match-

mediatekmt6757cMatch-

mediatekmt6757cdMatch-

mediatekmt6757chMatch-

mediatekmt6758Match-

mediatekmt6761Match-

mediatekmt6762Match-

mediatekmt6763Match-

mediatekmt6765Match-

mediatekmt6768Match-

mediatekmt6769Match-

mediatekmt6771Match-

mediatekmt6779Match-

mediatekmt6781Match-

mediatekmt6785Match-

mediatekmt6789Match-

mediatekmt6795Match-

mediatekmt6797Match-

mediatekmt6799Match-

mediatekmt6833Match-

mediatekmt6853Match-

mediatekmt6853tMatch-

mediatekmt6873Match-

mediatekmt6875Match-

mediatekmt6877Match-

mediatekmt6879Match-

mediatekmt6880Match-

mediatekmt6883Match-

mediatekmt6885Match-

mediatekmt6889Match-

mediatekmt6890Match-

mediatekmt6891Match-

mediatekmt6893Match-

mediatekmt6895Match-

mediatekmt6983Match-

mediatekmt6985Match-

mediatekmt8321Match-

mediatekmt8666Match-

mediatekmt8675Match-

mediatekmt8765Match-

mediatekmt8766Match-

mediatekmt8768Match-

mediatekmt8786Match-

mediatekmt8788Match-

mediatekmt8789Match-

mediatekmt8791Match-

mediatekmt8797Match-

VendorProductVersionCPE
googleandroid11.0cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
googleandroid12.0cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
mediatekmt6739-cpe:2.3:h:mediatek:mt6739:-:*:*:*:*:*:*:*
mediatekmt6750-cpe:2.3:h:mediatek:mt6750:-:*:*:*:*:*:*:*
mediatekmt6750s-cpe:2.3:h:mediatek:mt6750s:-:*:*:*:*:*:*:*
mediatekmt6752-cpe:2.3:h:mediatek:mt6752:-:*:*:*:*:*:*:*
mediatekmt6753-cpe:2.3:h:mediatek:mt6753:-:*:*:*:*:*:*:*
mediatekmt6755-cpe:2.3:h:mediatek:mt6755:-:*:*:*:*:*:*:*
mediatekmt6755s-cpe:2.3:h:mediatek:mt6755s:-:*:*:*:*:*:*:*
mediatekmt6757-cpe:2.3:h:mediatek:mt6757:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
google	android	11.0	cpe:2.3:o:google:android:11.0:::::::*
google	android	12.0	cpe:2.3:o:google:android:12.0:::::::*
mediatek	mt6739	-	cpe:2.3:h:mediatek:mt6739:-:::::::*
mediatek	mt6750	-	cpe:2.3:h:mediatek:mt6750:-:::::::*
mediatek	mt6750s	-	cpe:2.3:h:mediatek:mt6750s:-:::::::*
mediatek	mt6752	-	cpe:2.3:h:mediatek:mt6752:-:::::::*
mediatek	mt6753	-	cpe:2.3:h:mediatek:mt6753:-:::::::*
mediatek	mt6755	-	cpe:2.3:h:mediatek:mt6755:-:::::::*
mediatek	mt6755s	-	cpe:2.3:h:mediatek:mt6755s:-:::::::*
mediatek	mt6757	-	cpe:2.3:h:mediatek:mt6757:-:::::::*

Rows per page:

1-10 of 561

References

corp.mediatek.com/product-security-bulletin/June-2022

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2022-21749

cvelist1 cve1 prion1