In bluetooth driver, there is a possible read and write access to registers due to improper access control of register interface. This could lead to local leak of sensitive information with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07849751; Issue ID: ALPS07849751.
References
| Link | Resource |
|---|---|
| https://corp.mediatek.com/product-security-bulletin/September-2023 | Vendor Advisory |
| https://corp.mediatek.com/product-security-bulletin/September-2023 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Nov 2024, 08:04
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://corp.mediatek.com/product-security-bulletin/September-2023 - Vendor Advisory |
07 Sep 2023, 19:12
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Mediatek mt6889
Mediatek mt6877 Mediatek mt6879 Mediatek mt6781 Mediatek mt6873 Mediatek mt6779 Mediatek mt8791 Mediatek mt8797wifi Mediatek mt8791wifi Mediatek mt8188 Mediatek mt2713 Mediatek mt8666 Mediatek mt8365 Mediatek mt8195 Mediatek mt6855 Mediatek mt6853 Mediatek mt6785 Mediatek mt6833 Mediatek mt8781wifi Mediatek mt8667 Mediatek mt6835 Mediatek mt8781 Mediatek mt8673 Mediatek mt6886 Mediatek mt8168 Mediatek mt8797 Mediatek mt6891 Mediatek mt6885 Mediatek mt6983 Mediatek Mediatek mt8791t Mediatek mt8175 Mediatek mt6789 Mediatek mt6895 Mediatek mt6893 Google android |
|
| References | (MISC) https://corp.mediatek.com/product-security-bulletin/September-2023 - Vendor Advisory | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.4 |
| CWE | NVD-CWE-Other | |
| CPE | cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8175:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8666:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8781:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8781wifi:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6833:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8791:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8667:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt2713:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6789:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8168:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8673:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8797:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6893:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6877:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8791wifi:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8791t:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6781:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6835:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6889:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8797wifi:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt8365:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6855:-:*:*:*:*:*:*:* |
04 Sep 2023, 03:51
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-09-04 03:15
Updated : 2024-11-21 08:04
NVD link : CVE-2023-32808
Mitre link : CVE-2023-32808
CVE.ORG link : CVE-2023-32808
JSON object : View
Products Affected
mediatek
- mt8791wifi
- mt8791
- mt8666
- mt6877
- mt8365
- mt6781
- mt6886
- mt2713
- mt6853
- mt8175
- mt8781wifi
- mt6889
- mt6833
- mt8667
- mt8781
- mt6893
- mt6785
- mt6789
- mt8195
- mt8673
- mt6873
- mt6891
- mt6885
- mt6855
- mt6835
- mt8188
- mt8797wifi
- mt6879
- mt8168
- mt6779
- mt8791t
- mt8797
- mt6983
- mt6895
- android
CWE