Lucene search

[email protected]NVD:CVE-2023-32820

HistoryOct 02, 2023 - 3:15 a.m.

CVE-2023-32820

2023-10-0203:15:09

CWE-20

CWE-617

[email protected]

web.nvd.nist.gov

cve-2023-32820

firmware assertion

denial of service

remote

input handling

patch alps07932637

issue alps07932637

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

27.2%

JSON

In wlan firmware, there is a possible firmware assertion due to improper input handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07932637; Issue ID: ALPS07932637.

Affected configurations

Nvd

Node

linuxfoundationyoctoMatch3.1

linuxfoundationyoctoMatch3.3

mediatekiot_yoctoMatch23.0

googleandroidMatch11.0

googleandroidMatch12.0

googleandroidMatch13.0

linuxlinux_kernelMatch4.19-

AND

mediatekmt5221Match-

mediatekmt6781Match-

mediatekmt6833Match-

mediatekmt6853Match-

mediatekmt6853tMatch-

mediatekmt6855Match-

mediatekmt6873Match-

mediatekmt6875Match-

mediatekmt6877Match-

mediatekmt6879Match-

mediatekmt6883Match-

mediatekmt6885Match-

mediatekmt6886Match-

mediatekmt6889Match-

mediatekmt6891Match-

mediatekmt6893Match-

mediatekmt6895Match-

mediatekmt6983Match-

mediatekmt6985Match-

mediatekmt7663Match-

mediatekmt7668Match-

mediatekmt7902Match-

mediatekmt7921Match-

mediatekmt8168Match-

mediatekmt8365Match-

mediatekmt8518sMatch-

mediatekmt8532Match-

mediatekmt8666Match-

mediatekmt8673Match-

mediatekmt8675Match-

mediatekmt8695Match-

mediatekmt8766Match-

mediatekmt8768Match-

mediatekmt8781Match-

mediatekmt8786Match-

mediatekmt8789Match-

mediatekmt8791Match-

mediatekmt8797Match-

mediatekmt8798Match-

VendorProductVersionCPE
linuxfoundationyocto3.1cpe:2.3:a:linuxfoundation:yocto:3.1:*:*:*:*:*:*:*
linuxfoundationyocto3.3cpe:2.3:a:linuxfoundation:yocto:3.3:*:*:*:*:*:*:*
mediatekiot_yocto23.0cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
googleandroid11.0cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
googleandroid12.0cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
googleandroid13.0cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
linuxlinux_kernel4.19cpe:2.3:o:linux:linux_kernel:4.19:-:*:*:*:*:*:*
mediatekmt5221-cpe:2.3:h:mediatek:mt5221:-:*:*:*:*:*:*:*
mediatekmt6781-cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:*
mediatekmt6833-cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linuxfoundation	yocto	3.1	cpe:2.3:a:linuxfoundation:yocto:3.1:::::::*
linuxfoundation	yocto	3.3	cpe:2.3:a:linuxfoundation:yocto:3.3:::::::*
mediatek	iot_yocto	23.0	cpe:2.3:a:mediatek:iot_yocto:23.0:::::::*
google	android	11.0	cpe:2.3:o:google:android:11.0:::::::*
google	android	12.0	cpe:2.3:o:google:android:12.0:::::::*
google	android	13.0	cpe:2.3:o:google:android:13.0:::::::*
linux	linux_kernel	4.19	cpe:2.3:o:linux:linux_kernel:4.19:-::::::
mediatek	mt5221	-	cpe:2.3:h:mediatek:mt5221:-:::::::*
mediatek	mt6781	-	cpe:2.3:h:mediatek:mt6781:-:::::::*
mediatek	mt6833	-	cpe:2.3:h:mediatek:mt6833:-:::::::*

Rows per page:

1-10 of 461

References

corp.mediatek.com/product-security-bulletin/October-2023

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

27.2%

JSON

Related for NVD:CVE-2023-32820

cvelist1 cve1 prion1 vulnrichment1