CVE-2023-32805

In power, there is a possible out of bounds write due to an insecure default value. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS08102892; Issue ID: ALPS08102892.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
OR cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:04

Type Values Removed Values Added
References () https://corp.mediatek.com/product-security-bulletin/September-2023 - Vendor Advisory () https://corp.mediatek.com/product-security-bulletin/September-2023 - Vendor Advisory

07 Sep 2023, 19:10

Type Values Removed Values Added
References (MISC) https://corp.mediatek.com/product-security-bulletin/September-2023 - (MISC) https://corp.mediatek.com/product-security-bulletin/September-2023 - Vendor Advisory
First Time Mediatek mt8675
Mediatek mt8168
Mediatek
Google
Google android
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5
CPE cpe:2.3:h:mediatek:mt8675:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:*
CWE CWE-787

04 Sep 2023, 03:51

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-04 03:15

Updated : 2024-11-21 08:04


NVD link : CVE-2023-32805

Mitre link : CVE-2023-32805

CVE.ORG link : CVE-2023-32805


JSON object : View

Products Affected

mediatek

  • mt8675
  • mt8168

google

  • android
CWE
CWE-787

Out-of-bounds Write