In video, there is a possible out of bounds write due to a permissions bypass. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08013430; Issue ID: ALPS08013433.
References
Link | Resource |
---|---|
https://corp.mediatek.com/product-security-bulletin/October-2023 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
03 Oct 2023, 01:10
Type | Values Removed | Values Added |
---|---|---|
First Time |
Mediatek mt6853
Mediatek mt6785 Mediatek mt6873 Mediatek mt6771 Mediatek mt6779 Google android Mediatek mt6761 Mediatek Mediatek mt6768 Mediatek mt6763 Mediatek mt6765 Mediatek mt6885 |
|
CWE | CWE-787 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.7 |
CPE | cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6763:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6761:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6768:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6771:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6779:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6853:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6885:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6873:-:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6765:-:*:*:*:*:*:*:* cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:* cpe:2.3:h:mediatek:mt6785:-:*:*:*:*:*:*:* |
|
References | (MISC) https://corp.mediatek.com/product-security-bulletin/October-2023 - Vendor Advisory |
02 Oct 2023, 03:53
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-02 03:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-32821
Mitre link : CVE-2023-32821
CVE.ORG link : CVE-2023-32821
JSON object : View
Products Affected
mediatek
- mt6853
- mt6761
- mt6768
- mt6771
- mt6763
- mt6765
- mt6779
- mt6785
- mt6873
- mt6885
- android
CWE
CWE-787
Out-of-bounds Write