6.4
CVE-2023-20785
- EPSS 0.02%
- Veröffentlicht 07.08.2023 04:15:12
- Zuletzt bearbeitet 21.11.2024 07:41:31
- Quelle security@mediatek.com
- CVE-Watchlists
- Unerledigt
LoginIn audio, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07628524; Issue ID: ALPS07628524.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Google ≫ Android Version12.0
Mediatek ≫ Mt6779 Version-
Mediatek ≫ Mt6781 Version-
Mediatek ≫ Mt6785 Version-
Mediatek ≫ Mt6853 Version-
Mediatek ≫ Mt6853t Version-
Mediatek ≫ Mt6873 Version-
Mediatek ≫ Mt6875 Version-
Mediatek ≫ Mt6877 Version-
Mediatek ≫ Mt6879 Version-
Mediatek ≫ Mt6883 Version-
Mediatek ≫ Mt6885 Version-
Mediatek ≫ Mt6889 Version-
Mediatek ≫ Mt6891 Version-
Mediatek ≫ Mt6893 Version-
Mediatek ≫ Mt6895 Version-
Mediatek ≫ Mt8168 Version-
Mediatek ≫ Mt8781 Version-
Mediatek ≫ Mt8791 Version-
Mediatek ≫ Mt8797 Version-
Mediatek ≫ Mt6781 Version-
Mediatek ≫ Mt6785 Version-
Mediatek ≫ Mt6853 Version-
Mediatek ≫ Mt6853t Version-
Mediatek ≫ Mt6873 Version-
Mediatek ≫ Mt6875 Version-
Mediatek ≫ Mt6877 Version-
Mediatek ≫ Mt6879 Version-
Mediatek ≫ Mt6883 Version-
Mediatek ≫ Mt6885 Version-
Mediatek ≫ Mt6889 Version-
Mediatek ≫ Mt6891 Version-
Mediatek ≫ Mt6893 Version-
Mediatek ≫ Mt6895 Version-
Mediatek ≫ Mt8168 Version-
Mediatek ≫ Mt8781 Version-
Mediatek ≫ Mt8791 Version-
Mediatek ≫ Mt8797 Version-
Google ≫ Android Version13.0
Mediatek ≫ Mt6779 Version-
Mediatek ≫ Mt6781 Version-
Mediatek ≫ Mt6785 Version-
Mediatek ≫ Mt6853 Version-
Mediatek ≫ Mt6853t Version-
Mediatek ≫ Mt6873 Version-
Mediatek ≫ Mt6875 Version-
Mediatek ≫ Mt6877 Version-
Mediatek ≫ Mt6879 Version-
Mediatek ≫ Mt6883 Version-
Mediatek ≫ Mt6885 Version-
Mediatek ≫ Mt6889 Version-
Mediatek ≫ Mt6891 Version-
Mediatek ≫ Mt6893 Version-
Mediatek ≫ Mt6895 Version-
Mediatek ≫ Mt8168 Version-
Mediatek ≫ Mt8781 Version-
Mediatek ≫ Mt8791 Version-
Mediatek ≫ Mt8797 Version-
Mediatek ≫ Mt6781 Version-
Mediatek ≫ Mt6785 Version-
Mediatek ≫ Mt6853 Version-
Mediatek ≫ Mt6853t Version-
Mediatek ≫ Mt6873 Version-
Mediatek ≫ Mt6875 Version-
Mediatek ≫ Mt6877 Version-
Mediatek ≫ Mt6879 Version-
Mediatek ≫ Mt6883 Version-
Mediatek ≫ Mt6885 Version-
Mediatek ≫ Mt6889 Version-
Mediatek ≫ Mt6891 Version-
Mediatek ≫ Mt6893 Version-
Mediatek ≫ Mt6895 Version-
Mediatek ≫ Mt8168 Version-
Mediatek ≫ Mt8781 Version-
Mediatek ≫ Mt8791 Version-
Mediatek ≫ Mt8797 Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.027 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.4 | 0.5 | 5.9 |
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition
The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.