CVE-2022-32659

In Wi-Fi driver, there is a possible undefined behavior due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220705066; Issue ID: GN20220705066.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:mediatek:mt7603_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7603:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:mediatek:mt7613_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7613:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:o:mediatek:mt7615_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7615:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:o:mediatek:mt7622_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7622:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:o:mediatek:mt7628_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7628:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
OR cpe:2.3:o:mediatek:mt7629_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7629:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
OR cpe:2.3:o:mediatek:mt7915_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7915:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
OR cpe:2.3:o:mediatek:mt7916_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7916:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
OR cpe:2.3:o:mediatek:mt7981_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7981:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
OR cpe:2.3:o:mediatek:mt7986_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt7986:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
OR cpe:2.3:o:mediatek:mt8518s_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8518s:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
OR cpe:2.3:o:mediatek:mt8532_firmware:7.6.6.0:*:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.1:-:*:*:*:*:*:*
cpe:2.3:o:thelinuxfoundation:yocto:3.3:-:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8532:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:06

Type Values Removed Values Added
References () https://corp.mediatek.com/product-security-bulletin/January-2023 - Vendor Advisory () https://corp.mediatek.com/product-security-bulletin/January-2023 - Vendor Advisory

08 Aug 2023, 14:22

Type Values Removed Values Added
CWE CWE-20 CWE-755

Information

Published : 2023-01-03 21:15

Updated : 2024-11-21 07:06


NVD link : CVE-2022-32659

Mitre link : CVE-2022-32659

CVE.ORG link : CVE-2022-32659


JSON object : View

Products Affected

mediatek

  • mt7622
  • mt7981_firmware
  • mt8518s
  • mt8532
  • mt7629
  • mt7622_firmware
  • mt7916
  • mt7916_firmware
  • mt7613
  • mt7915
  • mt7615_firmware
  • mt7915_firmware
  • mt7628_firmware
  • mt7629_firmware
  • mt7628
  • mt7986
  • mt7615
  • mt7613_firmware
  • mt7603_firmware
  • mt8532_firmware
  • mt7981
  • mt8518s_firmware
  • mt7603
  • mt7986_firmware

thelinuxfoundation

  • yocto
CWE
CWE-755

Improper Handling of Exceptional Conditions