322 matches found
CVE-2023-32873
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08583919; Issue ID: ALPS08304227...
CVE-2024-20057
CVE-2024-20057 is a MediaTek keyInstall vulnerability caused by a missing bounds check that enables an out-of-bounds write, potentially leading to local privilege escalation with SYSTEM privileges. Exploitation is reported as not requiring user interaction. The issue is associated with MediaTek r...
CVE-2024-20057
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08587881; Issue ID: ALPS08587881...
PT-2024-18544 · Mediatek +1 · Mt6765 +25
Name of the Vulnerable Software and Affected Versions: No specific software name or affected versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds read in the keyInstall function due to a missing bounds check. This could lead to local...
PT-2024-12349 · Mediatek +1 · Mt6761 +24
Name of the Vulnerable Software and Affected Versions: No specific software name or versions are mentioned in the provided descriptions. Description: The issue is related to a possible out of bounds write in keyInstall due to a missing bounds check. This could lead to local escalation of privileg...
MediaTek 芯片 安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek chips, which stems from a missing boundary check in the keyInstall module, which may result in out-of-bounds writes...
MediaTek 芯片 安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek chips, which stems from a missing boundary check in the keyInstall module, which may result in out-of-bounds writes...
MediaTek 芯片 安全漏洞
MediaTek chips are a variety of chips from MediaTek, a Chinese company. A security vulnerability exists in MediaTek chips, which stems from a missing boundary check in the keyInstall module, which may result in out-of-bounds reads...
CVE-2024-20010
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560...
CVE-2024-20010
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20012
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
Type confusion
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566...
CVE-2024-20013
CVE-2024-20013: MediaTek media chips — in keyInstall there is an out-of-bounds write due to a missing bounds check, enabling local privilege escalation to System level. Exploitation details are not provided in the documents; exploitation status is not confirmed. Patch ID ALPS08471742; Issue ID AL...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20013
In keyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08471742; Issue ID: ALPS08308608...
CVE-2024-20012
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358566; Issue ID: ALPS08358566...
CVE-2024-20012
The CVE-2024-20012 issue affects MediaTek’s keyInstall module, caused by a type-confusion bug that enables local privilege escalation to System level. Exploitation reportedly requires no user interaction. The available patch reference is ALPS08358566 (Issue ALPS08358566). No exploitation details ...
CVE-2024-20010
In keyInstall, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08358560; Issue ID: ALPS08358560...