Vulnerabilities (CVE)

Filtered by vendor Mediatek Subscribe

Filtered by product Mt6895

Total 365 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-20097	2 Google, Mediatek	45 Android, Mt6580, Mt6739 and 42 more	2024-02-28	1.9 LOW	4.7 MEDIUM
In aee daemon, there is a possible information disclosure due to a race condition. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06383944; Issue ID: ALPS06383944.
CVE-2022-20104	2 Google, Mediatek	45 Android, Mt6580, Mt6739 and 42 more	2024-02-28	2.1 LOW	5.5 MEDIUM
In aee daemon, there is a possible information disclosure due to improper access control. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06419017; Issue ID: ALPS06284104.
CVE-2022-20090	2 Google, Mediatek	46 Android, Mt6580, Mt6731 and 43 more	2024-02-28	4.4 MEDIUM	6.4 MEDIUM
In aee driver, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06209197; Issue ID: ALPS06209197.
CVE-2022-21750	2 Google, Mediatek	32 Android, Mt6761, Mt6779 and 29 more	2024-02-28	4.6 MEDIUM	6.7 MEDIUM
In WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06521283; Issue ID: ALPS06521283.
CVE-2022-21756	2 Google, Mediatek	36 Android, Mt6833, Mt6853 and 33 more	2024-02-28	2.1 LOW	4.4 MEDIUM
In WLAN driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS06535950; Issue ID: ALPS06535950.