317 matches found
CVE-2023-32873
The CVE-2023-32873 issue affects MediaTek’s keyInstall module, where a missing bounds check enables an out-of-bounds write that could lead to local escalation of privilege with SYSTEM privileges. Exploitation details are not provided in the connected documents. Impact is described as requiring no...
CVE-2024-20057
CVE-2024-20057 is a MediaTek keyInstall vulnerability caused by a missing bounds check that enables an out-of-bounds write, potentially leading to local privilege escalation with SYSTEM privileges. Exploitation is reported as not requiring user interaction. The issue is associated with MediaTek r...
CVE-2024-20057
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08587881; Issue ID: ALPS08587881...
MediaTek 芯片 安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek chips, which stems from a missing boundary check in the keyInstall module, which may result in out-of-bounds writes...
PT-2024-18544 · Mediatek +1 · Mt6765 +25
Name of the Vulnerable Software and Affected Versions: No specific software name or affected versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds read in the keyInstall function due to a missing bounds check. This could lead to local...
MediaTek 芯片 安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek chips, which stems from a missing boundary check in the keyInstall module, which may result in out-of-bounds writes...
MediaTek 芯片 安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek chips, which stems from a missing boundary check in the keyInstall module, which may result in out-of-bounds reads...
PT-2024-12349 · Mediatek +1 · Mt6761 +24
Name of the Vulnerable Software and Affected Versions: No specific software name or versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds write in keyInstall due to a missing bounds check. This could lead to local escalation of privileg...
CVE-2024-20010
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20010
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20012
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566...
Type confusion
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566...
CVE-2024-20013
CVE-2024-20013: MediaTek media chips — in keyInstall there is an out-of-bounds write due to a missing bounds check, enabling local privilege escalation to System level. Exploitation details are not provided in the documents; exploitation status is not confirmed. Patch ID ALPS08471742; Issue ID AL...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20012
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566...
CVE-2024-20012
The CVE-2024-20012 issue affects MediaTek’s keyInstall module, caused by a type-confusion bug that enables local privilege escalation to System level. Exploitation reportedly requires no user interaction. The available patch reference is ALPS08358566 (Issue ALPS08358566). No exploitation details ...
CVE-2024-20010
The CVE-2024-20010 entry describes a MediaTek vulnerability in the keyInstall module caused by type confusion, enabling local privilege escalation to SYSTEM without user interaction. Patch ALPS08358560 (Issue ALPS08358560) is referenced as the fix. Connected documents corroborate the local-privil...