CVE-2022-20069

In preloader usb, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20069

In preloader usb, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

Integer overflow

In preloader usb, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

Integer overflow

In preloader usb, there is a possible out of bounds write due to a integer underflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

Out-of-bounds

In preloader partition, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patc...

CVE-2022-20074

In preloader partition, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patc...

CVE-2022-20074

CVE-2022-20074 concerns a boundary-check omission in the preloader (partition) of MediaTek devices, causing an out-of-bounds write that can enable local privilege escalation with physical access and user interaction required for exploitation. Affected component: preloader partition code on MediaT...

CVE-2022-20073

CVE-2022-20073 affects the preloader (usb) on MediaTek devices, where an integer underflow can trigger an out-of-bounds write. This can enable local escalation of privilege for an attacker with physical device access, with user interaction required for exploitation. The issue is documented with P...

CVE-2022-20073

In preloader usb, there is a possible out of bounds write due to a integer underflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20069

In preloader usb, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20069

CVE-2022-20069 affects the preloader (usb) and involves an out-of-bounds write caused by an integer overflow. The documented impact is local privilege escalation for an attacker with physical access to the device, with user interaction required for exploitation. Affected details specify a patch i...

多款 MediaTek 产品数字错误漏洞

MediaTek chips are a variety of chips from MediaTek, a division of China's MediaTek Mediatek. A security vulnerability exists in multiple MediaTek products that originates from an integer underflow in the preloader usb, which may result in out-of-bounds writes...

多款 MediaTek 产品输入验证错误漏洞

MediaTek chips are a variety of chips from MediaTek, a division of China's MediaTek Mediatek. A security vulnerability exists in multiple MediaTek products that originates from an integer overflow in the preloader usb, which may result in out-of-bounds writes...

多款 MediaTek 产品缓冲区错误漏洞

MediaTek chips are a variety of chips from MediaTek, a division of China's MediaTek Mediatek. A security vulnerability exists in multiple MediaTek products that stems from a lack of boundary checking in the preloader partitioning, which may result in out-of-bounds writes...

CVE-2022-20059

In preloader usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20060

In preloader usb, there is a possible permission bypass due to a missing proper image authentication. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitatio...

CVE-2022-20060

In preloader usb, there is a possible permission bypass due to a missing proper image authentication. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitatio...

CVE-2022-20059

In preloader usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20059

In preloader usb, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID:...

CVE-2022-20060

In preloader usb, there is a possible permission bypass due to a missing proper image authentication. This could lead to local escalation of privilege, for an attacker who has physical access to the device, with no additional execution privileges needed. User interaction is needed for exploitatio...