CVE-2024-20090

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09028313; Issue ID: MSV-1703...

CVE-2024-20090

CVE-2024-20090 is a MediaTek vdec vulnerability: an out-of-bounds write caused by a missing bounds check, enabling local escalation of privilege with SYSTEM privileges; no user interaction is required. Patch ALPS09028313; Issue MSV-1703. Related documents confirm vdec involvement in MediaTek comp...

PT-2024-39361 · 123Solar · 123Solar

Name of the Vulnerable Software and Affected Versions: jeanmarc77 123solar version 1.8.4.5 Description: A critical issue exists in the software, affecting an unknown part of the file config/config invt1.php. The manipulation of the PASSOx argument leads to code injection. This issue can be...

CVE-2024-20087

In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08932916; Issue ID: MSV-1550...

CVE-2024-20089

In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08861558; Issue ID: MSV-1526...

CVE-2024-20089

In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08861558; Issue ID: MSV-1526...

CVE-2024-20089

CVE-2024-20089 affects MediaTek wlan in various MediaTek chipsets. The vulnerability stems from incorrect error handling in the wlan component, enabling a remote denial of service without user interaction. The issue is classified with a HIGH impact (Availability) and NETWORK attack vector, with n...

CVE-2024-20089

In wlan, there is a possible denial of service due to incorrect error handling. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08861558; Issue ID: MSV-1526...

CVE-2024-20088

CVE-2024-20088 affects MediaTek keyinstall: an out-of-bounds read due to a missing bounds check, enabling local information disclosure with system privileges. Public exploitation details are not provided in the available documents. The vulnerability is associated with patch ID ALPS08932099 and Is...

CVE-2024-20086

CVE-2024-20086 concerns MediaTek vdec component where a missing bounds check can lead to an out-of-bounds write. This could enable local escalation of privilege with system execution privileges, and exploitation does not require user interaction. Public references indicate a patch ID: ALPS0893291...

CVE-2024-20084

In power, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08944210; Issue ID: MSV-1561...

CVE-2024-20084

CVE-2024-20084 affects MediaTek power components. The vulnerability is an out-of-bounds read caused by a missing bounds check, potentially enabling local information disclosure with System execution privileges required; exploitation is not user-initiated. Patch ALPS08944210 is noted (Issue MSV-15...

PT-2024-38747 · Go Tribe · Gotribe-Admin

Name of the Vulnerable Software and Affected Versions: Go-Tribe gotribe-admin version 1.0 Description: A vulnerability was found in the Log Handler component of Go-Tribe gotribe-admin, affecting the function InitRoutes of the file internal/app/routes/routes.go. This issue leads to deserialization...

CVE-2024-20082

In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01182594; Issue ID: MSV-1529...

CVE-2024-20083

In venc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08810810 / ALPS08805789; Issue ID: MSV-1502...

CVE-2024-20083

In venc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08810810 / ALPS08805789; Issue ID: MSV-1502...

CVE-2024-20083

In venc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08810810 / ALPS08805789; Issue ID: MSV-1502...

CVE-2024-20082

In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01182594; Issue ID: MSV-1529...

CVE-2024-20082

In Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01182594; Issue ID: MSV-1529...

CVE-2024-20082

CVE-2024-20082 affects MediaTek’s Modem component, where a missing bounds check can cause memory corruption, enabling remote code execution with no privileges and no user interaction. Impact is described as High/Total in multiple sources; exploitation status is not detailed in the provided docume...