2 matches found
CVE-2022-26469
In MtkEmail, there is a possible escalation of privilege due to fragment injection. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07216598; Issue ID: ALPS07216598...
CVE-2022-26469
CVE-2022-26469 affects MediaTek’s MtkEmail module and describes a local privilege-escalation vulnerability caused by fragment injection. The issue permits escalation without requiring execution privileges and with no user interaction, aligning with a high impact (confidentiality, integrity, and a...