Out-of-bounds

2023-09-0403:15:00

PRIOn knowledge base

www.prio-n.com

out of bounds read

information disclosure

system execution privileges

4.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In imgsys_cmdq, there is a possible out of bounds read due to a missing valid range checking. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07354023; Issue ID: ALPS07340098.

CPENameOperatorVersion
androideq11.0
androideq12.0
linux_kerneleq6.1
yoctoeq4.0
iot_yoctoeq23.0

Name	Operator	Version
android	eq	11.0
android	eq	12.0
linux_kernel	eq	6.1
yocto	eq	4.0
iot_yocto	eq	23.0

References

corp.mediatek.com/product-security-bulletin/September-2023