7.5
CVE-2022-32663
- EPSS 3.75%
- Published 06.02.2023 20:15:11
- Last modified 26.03.2025 15:15:38
- Source security@mediatek.com
- Teams watchlist Login
- Open Login
In Wi-Fi driver, there is a possible system crash due to null pointer dereference. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: GN20220720014; Issue ID: GN20220720014.
Data is provided by the National Vulnerability Database (NVD)
Mediatek ≫ Mt5221 Firmware Version7.6.6.1
Mediatek ≫ Mt7603 Firmware Version7.6.6.1
Mediatek ≫ Mt7613 Firmware Version7.6.6.1
Mediatek ≫ Mt7615 Firmware Version7.6.6.1
Mediatek ≫ Mt7622 Firmware Version7.6.6.1
Mediatek ≫ Mt7628 Firmware Version7.6.6.1
Mediatek ≫ Mt7629 Firmware Version7.6.6.1
Mediatek ≫ Mt7668 Firmware Version7.6.6.1
Mediatek ≫ Mt7902 Firmware Version7.6.6.1
Mediatek ≫ Mt7915 Firmware Version7.6.6.1
Mediatek ≫ Mt7916 Firmware Version7.6.6.1
Mediatek ≫ Mt7921 Firmware Version7.6.6.1
Mediatek ≫ Mt7981 Firmware Version7.6.6.1
Mediatek ≫ Mt7986 Firmware Version7.6.6.1
Mediatek ≫ Mt8167s Firmware Version7.6.6.1
Mediatek ≫ Mt8175 Firmware Version7.6.6.1
Mediatek ≫ Mt8362a Firmware Version7.6.6.1
Mediatek ≫ Mt8365 Firmware Version7.6.6.1
Mediatek ≫ Mt8385 Firmware Version7.6.6.1
Mediatek ≫ Mt8518s Firmware Version7.6.6.1
Mediatek ≫ Mt8532 Firmware Version7.6.6.1
Mediatek ≫ Mt8788 Firmware Version7.6.6.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.75% | 0.869 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.