6.7

CVE-2023-20662

In wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07560765; Issue ID: ALPS07560765.

Data is provided by the National Vulnerability Database (NVD)
GoogleAndroid Version11.0
   MediatekMt5221 Version-
   MediatekMt6879 Version-
   MediatekMt6895 Version-
   MediatekMt6983 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
   MediatekMt8167s Version-
   MediatekMt8168 Version-
   MediatekMt8175 Version-
   MediatekMt8362a Version-
   MediatekMt8365 Version-
   MediatekMt8385 Version-
   MediatekMt8518 Version-
   MediatekMt8532 Version-
   MediatekMt8696 Version-
   MediatekMt8766 Version-
   MediatekMt8768 Version-
   MediatekMt8771 Version-
   MediatekMt8781 Version-
   MediatekMt8786 Version-
   MediatekMt8788 Version-
   MediatekMt8789 Version-
   MediatekMt8791t Version-
   MediatekMt8795t Version-
   MediatekMt8797 Version-
   MediatekMt8798 Version-
GoogleAndroid Version12.0
   MediatekMt5221 Version-
   MediatekMt6879 Version-
   MediatekMt6895 Version-
   MediatekMt6983 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
   MediatekMt8167s Version-
   MediatekMt8168 Version-
   MediatekMt8175 Version-
   MediatekMt8362a Version-
   MediatekMt8365 Version-
   MediatekMt8385 Version-
   MediatekMt8518 Version-
   MediatekMt8532 Version-
   MediatekMt8696 Version-
   MediatekMt8766 Version-
   MediatekMt8768 Version-
   MediatekMt8771 Version-
   MediatekMt8781 Version-
   MediatekMt8786 Version-
   MediatekMt8788 Version-
   MediatekMt8789 Version-
   MediatekMt8791t Version-
   MediatekMt8795t Version-
   MediatekMt8797 Version-
   MediatekMt8798 Version-
GoogleAndroid Version13.0
   MediatekMt5221 Version-
   MediatekMt6879 Version-
   MediatekMt6895 Version-
   MediatekMt6983 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
   MediatekMt8167s Version-
   MediatekMt8168 Version-
   MediatekMt8175 Version-
   MediatekMt8362a Version-
   MediatekMt8365 Version-
   MediatekMt8385 Version-
   MediatekMt8518 Version-
   MediatekMt8532 Version-
   MediatekMt8696 Version-
   MediatekMt8766 Version-
   MediatekMt8768 Version-
   MediatekMt8771 Version-
   MediatekMt8781 Version-
   MediatekMt8786 Version-
   MediatekMt8788 Version-
   MediatekMt8789 Version-
   MediatekMt8791t Version-
   MediatekMt8795t Version-
   MediatekMt8797 Version-
   MediatekMt8798 Version-
YoctoprojectYocto Version3.1
   MediatekMt5221 Version-
   MediatekMt6879 Version-
   MediatekMt6895 Version-
   MediatekMt6983 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
   MediatekMt8167s Version-
   MediatekMt8168 Version-
   MediatekMt8175 Version-
   MediatekMt8362a Version-
   MediatekMt8365 Version-
   MediatekMt8385 Version-
   MediatekMt8518 Version-
   MediatekMt8532 Version-
   MediatekMt8696 Version-
   MediatekMt8766 Version-
   MediatekMt8768 Version-
   MediatekMt8771 Version-
   MediatekMt8781 Version-
   MediatekMt8786 Version-
   MediatekMt8788 Version-
   MediatekMt8789 Version-
   MediatekMt8791t Version-
   MediatekMt8795t Version-
   MediatekMt8797 Version-
   MediatekMt8798 Version-
YoctoprojectYocto Version3.3
   MediatekMt5221 Version-
   MediatekMt6879 Version-
   MediatekMt6895 Version-
   MediatekMt6983 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
   MediatekMt8167s Version-
   MediatekMt8168 Version-
   MediatekMt8175 Version-
   MediatekMt8362a Version-
   MediatekMt8365 Version-
   MediatekMt8385 Version-
   MediatekMt8518 Version-
   MediatekMt8532 Version-
   MediatekMt8696 Version-
   MediatekMt8766 Version-
   MediatekMt8768 Version-
   MediatekMt8771 Version-
   MediatekMt8781 Version-
   MediatekMt8786 Version-
   MediatekMt8788 Version-
   MediatekMt8789 Version-
   MediatekMt8791t Version-
   MediatekMt8795t Version-
   MediatekMt8797 Version-
   MediatekMt8798 Version-
YoctoprojectYocto Version4.0
   MediatekMt5221 Version-
   MediatekMt6879 Version-
   MediatekMt6895 Version-
   MediatekMt6983 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
   MediatekMt8167s Version-
   MediatekMt8168 Version-
   MediatekMt8175 Version-
   MediatekMt8362a Version-
   MediatekMt8365 Version-
   MediatekMt8385 Version-
   MediatekMt8518 Version-
   MediatekMt8532 Version-
   MediatekMt8696 Version-
   MediatekMt8766 Version-
   MediatekMt8768 Version-
   MediatekMt8771 Version-
   MediatekMt8781 Version-
   MediatekMt8786 Version-
   MediatekMt8788 Version-
   MediatekMt8789 Version-
   MediatekMt8791t Version-
   MediatekMt8795t Version-
   MediatekMt8797 Version-
   MediatekMt8798 Version-
LinuxLinux Kernel Version4.19
   MediatekMt5221 Version-
   MediatekMt7902 Version-
   MediatekMt7921 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.03% 0.082
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.7 0.8 5.9
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 6.7 0.8 5.9
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.