CVE-2023-32829

In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478.
References
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:linuxfoundation:yocto:3.1:*:*:*:*:*:*:*
cpe:2.3:a:linuxfoundation:yocto:3.3:*:*:*:*:*:*:*
cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
OR cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6896:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8137:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8139:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*

History

03 Oct 2023, 01:43

Type Values Removed Values Added
References (MISC) https://corp.mediatek.com/product-security-bulletin/October-2023 - (MISC) https://corp.mediatek.com/product-security-bulletin/October-2023 - Vendor Advisory
First Time Mediatek mt8139
Mediatek mt6895
Google android
Mediatek mt6896
Mediatek mt6886
Mediatek mt8188
Mediatek
Linuxfoundation
Mediatek mt6891
Mediatek iot Yocto
Mediatek mt8395
Mediatek mt6985
Mediatek mt8195z
Linuxfoundation yocto
Mediatek mt8195
Mediatek mt6983
Mediatek mt8390
Mediatek mt8137
Google
Mediatek mt6879
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.7
CWE CWE-190
CPE cpe:2.3:h:mediatek:mt6896:-:*:*:*:*:*:*:*
cpe:2.3:a:linuxfoundation:yocto:4.0:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8195z:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6886:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8390:-:*:*:*:*:*:*:*
cpe:2.3:a:linuxfoundation:yocto:3.1:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6891:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*
cpe:2.3:a:mediatek:iot_yocto:23.0:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8395:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6895:-:*:*:*:*:*:*:*
cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8195:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6985:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6983:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8139:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8188:-:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt6879:-:*:*:*:*:*:*:*
cpe:2.3:a:linuxfoundation:yocto:3.3:*:*:*:*:*:*:*
cpe:2.3:h:mediatek:mt8137:-:*:*:*:*:*:*:*

02 Oct 2023, 03:53

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-02 03:15

Updated : 2024-09-21 16:35


NVD link : CVE-2023-32829

Mitre link : CVE-2023-32829

CVE.ORG link : CVE-2023-32829


JSON object : View

Products Affected

mediatek

  • mt6891
  • mt6896
  • mt6886
  • mt6985
  • mt8195
  • iot_yocto
  • mt8395
  • mt8137
  • mt8139
  • mt8195z
  • mt8390
  • mt6879
  • mt8188
  • mt6895
  • mt6983

google

  • android

linuxfoundation

  • yocto
CWE
CWE-190

Integer Overflow or Wraparound