CVE-2025-20636

In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09403554; Issue ID: MSV-2431...

CVE-2025-20636

In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09403554; Issue ID: MSV-2431...

CVE-2025-20636

In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS09403554; Issue ID: MSV-2431...

CVE-2025-20636

CVE-2025-20636 involves MediaTek MT8798 secmem module where a missing bounds check can cause an out-of-bounds write. This could enable local privilege escalation if an attacker already has System privileges, with no user interaction required. The available references list a patch: ALPS09403554 (M...

MediaTek Chipsets 缓冲区错误漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A buffer error vulnerability exists in MediaTek Chipsets, which stems from the secmem module containing a missing bounds-checking issue that could lead to out-of-bounds writes...

PT-2025-4155 · Mediatek · Mediatek Mt8798 Secmem

Name of the Vulnerable Software and Affected Versions: MediaTek MT8798 Secmem affected versions not specified Description: In secmem, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained t...

CVE-2023-32834

In secmem, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161762; Issue ID: ALPS08161762...

Type confusion

In secmem, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161762; Issue ID: ALPS08161762...

CVE-2023-32834

CVE-2023-32834 describes a memory corruption due to a type confusion in the secmem module, potentially enabling local privilege escalation to SYSTEM. The entry is associated with MediaTek ALPS (ALPS08161762 patch/issue IDs). The vulnerability is reported as exploitable without user interaction, w...

CVE-2023-32834

In secmem, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08161762; Issue ID: ALPS08161762...

MediaTek Chip Security Breach

MediaTek chips are a variety of chips from MediaTek, a company owned by MediaTek of China. A security vulnerability exists in the MediaTek chips that stems from a type confusion issue in the secmem module, which may result in memory corruption...

Fedora 13 : gnupg2-2.0.14-4.fc13 (2010-11413)

Fri Jul 23 2010 Rex Dieter - 2.0.14-4 - gpgsm realloc patch - Fri Jun 18 2010 Tomas Mraz - 2.0.14-3 - initialize small amount of secmem for list of algorithms in help 598847 necessary in the FIPS mode of libgcrypt Note that Tenable Network Security has extracted the preceding description block...