Lucene search

K

MT6779 Security Vulnerabilities

cve
cve

CVE-2022-32610

In vcu, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07203476; Issue ID:...

6.4CVSS

6.6AI Score

0.0004EPSS

2022-11-08 09:15 PM
21
2
cve
cve

CVE-2022-32607

In aee, there is a possible use after free due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07202891; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-11-08 09:15 PM
25
4
cve
cve

CVE-2022-32601

In telephony, there is a possible permission bypass due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07319132; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-11-08 09:15 PM
27
2
cve
cve

CVE-2022-26446

In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SIB12 (CMAS message), with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID:...

7.5CVSS

7.5AI Score

0.002EPSS

2022-11-08 09:15 PM
23
6
cve
cve

CVE-2022-21778

In vpu, there is a possible information disclosure due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06382421; Issue ID:...

6.7CVSS

6.3AI Score

0.0004EPSS

2022-11-08 09:15 PM
28
5
cve
cve

CVE-2022-32590

In wlan, there is a possible use after free due to an incorrect status check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07299425; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-10-07 08:15 PM
27
2
cve
cve

CVE-2022-32591

In ril, there is a possible system crash due to an incorrect bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07257259; Issue ID:...

7.5CVSS

7.4AI Score

0.001EPSS

2022-10-07 08:15 PM
24
cve
cve

CVE-2022-32589

In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07030600; Issue ID:...

7.5CVSS

7.3AI Score

0.001EPSS

2022-10-07 08:15 PM
25
2
cve
cve

CVE-2022-26475

In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310743; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-10-07 08:15 PM
28
4
cve
cve

CVE-2022-26472

In ims, there is a possible escalation of privilege due to a parcel format mismatch. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07319095; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-10-07 08:15 PM
27
4
cve
cve

CVE-2022-26469

In MtkEmail, there is a possible escalation of privilege due to fragment injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07216598; Issue ID:...

7.8CVSS

7.8AI Score

0.0004EPSS

2022-09-06 06:15 PM
31
4
cve
cve

CVE-2022-26465

In audio ipi, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558799; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-09-06 06:15 PM
24
4
cve
cve

CVE-2022-26468

In preloader (usb), there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:....

6.6CVSS

6.5AI Score

0.0005EPSS

2022-09-06 06:15 PM
29
6
cve
cve

CVE-2022-26467

In rpmb, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07167738; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-09-06 06:15 PM
26
4
cve
cve

CVE-2022-26466

In audio ipi, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06558777; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-09-06 06:15 PM
22
6
cve
cve

CVE-2022-26454

In teei, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664701; Issue ID:...

6.7CVSS

6.8AI Score

0.0004EPSS

2022-09-06 06:15 PM
25
cve
cve

CVE-2022-26453

In teei, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06664675; Issue ID:...

6.7CVSS

6.8AI Score

0.0004EPSS

2022-09-06 06:15 PM
24
cve
cve

CVE-2022-26429

In cta, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07025415; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-08-01 02:15 PM
33
5
cve
cve

CVE-2022-21789

In audio ipi, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06478101; Issue ID:...

6.4CVSS

6.6AI Score

0.0004EPSS

2022-08-01 02:15 PM
33
4
cve
cve

CVE-2022-21784

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
40
6
cve
cve

CVE-2022-21783

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
37
5
cve
cve

CVE-2022-21744

In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data (PNCD) improper neighbouring cell size with no additional execution privileges needed. User interaction is not needed for...

9.8CVSS

9.4AI Score

0.004EPSS

2022-07-06 02:15 PM
64
10
cve
cve

CVE-2022-21774

In TEEI driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641447; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
32
4
cve
cve

CVE-2022-21781

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
45
5
cve
cve

CVE-2022-21779

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
43
5
cve
cve

CVE-2022-21765

In CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641673; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
32
2
cve
cve

CVE-2022-21769

In CCCI, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641673; Issue ID:...

4.4CVSS

4.2AI Score

0.0004EPSS

2022-07-06 02:15 PM
37
6
cve
cve

CVE-2022-21771

In GED driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641585; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
36
4
cve
cve

CVE-2022-21763

In telecom service, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07044717; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-07-06 02:15 PM
42
4
cve
cve

CVE-2022-21773

In TEEI driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641388; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
33
4
cve
cve

CVE-2022-21777

In Autoboot, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06713894; Issue ID:...

7.8CVSS

7.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
35
5
cve
cve

CVE-2022-21772

In TEEI driver, there is a possible type confusion due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493842; Issue ID:...

6.7CVSS

6.6AI Score

0.0004EPSS

2022-07-06 02:15 PM
37
5
cve
cve

CVE-2022-21764

In telecom service, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07044717; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-07-06 02:15 PM
48
4
cve
cve

CVE-2022-21780

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
37
5
cve
cve

CVE-2022-21776

In MDP, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545450; Issue ID:...

6.4CVSS

6.5AI Score

0.0004EPSS

2022-07-06 02:15 PM
39
5
cve
cve

CVE-2022-21782

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06704526; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
47
5
cve
cve

CVE-2022-21766

In CCCI, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06641673; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
36
2
cve
cve

CVE-2022-21775

In sched driver, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479032; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-07-06 02:15 PM
35
4
cve
cve

CVE-2022-20083

In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY00803883; Issue ID:...

9.8CVSS

9.2AI Score

0.004EPSS

2022-07-06 02:15 PM
51
12
cve
cve

CVE-2022-21758

In ccu, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06439600; Issue ID:...

6.7CVSS

6.8AI Score

0.0004EPSS

2022-06-06 06:15 PM
55
4
cve
cve

CVE-2022-21761

In apusys driver, there is a possible system crash due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479532; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
44
3
cve
cve

CVE-2022-21759

In power service, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06419106; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
59
4
cve
cve

CVE-2022-21749

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06511058; Issue ID:...

5.5CVSS

5.1AI Score

0.0004EPSS

2022-06-06 06:15 PM
56
2
cve
cve

CVE-2022-21748

In telephony, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with User execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS06511030; Issue ID:...

5.5CVSS

5AI Score

0.0004EPSS

2022-06-06 06:15 PM
40
2
cve
cve

CVE-2022-21745

In WIFI Firmware, there is a possible memory corruption due to a use after free. This could lead to remote escalation of privilege, when devices are connecting to the attacker-controllable Wi-Fi hotspot, with no additional execution privileges needed. User interaction is not needed for...

8.8CVSS

8.7AI Score

0.001EPSS

2022-06-06 06:15 PM
102
4
cve
cve

CVE-2022-21755

In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06545464; Issue ID:...

4.4CVSS

4.2AI Score

0.0004EPSS

2022-06-06 06:15 PM
53
2
cve
cve

CVE-2022-21754

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535953; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
54
2
cve
cve

CVE-2022-21747

In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06478078; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
59
2
cve
cve

CVE-2022-21752

In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06493873; Issue ID:...

6.7CVSS

6.7AI Score

0.0004EPSS

2022-06-06 06:15 PM
51
2
cve
cve

CVE-2022-21746

In imgsensor, there is a possible out of bounds read due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06479698; Issue ID:...

4.4CVSS

4.6AI Score

0.0004EPSS

2022-06-06 06:15 PM
52
4
Total number of security vulnerabilities370