10 matches found
CVE-2025-20641
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...
CVE-2025-20642
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...
CVE-2025-20640
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issu...
CVE-2025-20643
CVE-2025-20643 impacts devices using MediaTek chipsets with a DA module vulnerability. A missing bounds check can cause an out-of-bounds read, potentially enabling local information disclosure when an attacker has physical access and already holds System privileges. Exploitation requires user int...
CVE-2025-20643
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, if a malicious actor has already obtained the System privilege. User interaction is needed for exploitation. Patch ID:...
CVE-2025-20642
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...
CVE-2025-20642
CVE-2025-20642 describes an out-of-bounds write in the DA module caused by a missing bounds check. This could enable local privilege escalation when an attacker has physical access to the device, with user interaction required for exploitation. A patch is identified as ALPS09291146 (MSV-2057); no...
CVE-2025-20640
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146; Issu...
CVE-2025-20639
The CVE refers to MediaTek DA module’s out-of-bounds write caused by a missing bounds check, enabling local privilege escalation with physical access and requiring user interaction. Affected: DA component; Root cause: bounds-check omission. Impact: confidentiality, integrity, and availability rat...
CVE-2025-20639
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS09291146;...