CVE-2023-32884

EPSS 0.02%
Published 02.01.2024 03:15:08
Last modified 03.06.2025 15:15:31
Source security@mediatek.com
Teams watchlist Login
Open Login

In netdagent, there is a possible information disclosure due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07944011; Issue ID: ALPS07944011.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Google ≫ Android Version12.0

   Mediatek ≫ Mt2713 Version-
   Mediatek ≫ Mt6580 Version-
   Mediatek ≫ Mt6739 Version-
   Mediatek ≫ Mt6761 Version-
   Mediatek ≫ Mt6765 Version-
   Mediatek ≫ Mt6768 Version-
   Mediatek ≫ Mt6779 Version-
   Mediatek ≫ Mt6781 Version-
   Mediatek ≫ Mt6785 Version-
   Mediatek ≫ Mt6789 Version-
   Mediatek ≫ Mt6833 Version-
   Mediatek ≫ Mt6835 Version-
   Mediatek ≫ Mt6853 Version-
   Mediatek ≫ Mt6855 Version-
   Mediatek ≫ Mt6873 Version-
   Mediatek ≫ Mt6877 Version-
   Mediatek ≫ Mt6879 Version-
   Mediatek ≫ Mt6883 Version-
   Mediatek ≫ Mt6885 Version-
   Mediatek ≫ Mt6886 Version-
   Mediatek ≫ Mt6889 Version-
   Mediatek ≫ Mt6893 Version-
   Mediatek ≫ Mt6895 Version-
   Mediatek ≫ Mt6983 Version-
   Mediatek ≫ Mt6985 Version-
   Mediatek ≫ Mt8167 Version-
   Mediatek ≫ Mt8167s Version-
   Mediatek ≫ Mt8168 Version-
   Mediatek ≫ Mt8173 Version-
   Mediatek ≫ Mt8175 Version-
   Mediatek ≫ Mt8188 Version-
   Mediatek ≫ Mt8192 Version-
   Mediatek ≫ Mt8195 Version-
   Mediatek ≫ Mt8195z Version-
   Mediatek ≫ Mt8321 Version-
   Mediatek ≫ Mt8362a Version-
   Mediatek ≫ Mt8365 Version-
   Mediatek ≫ Mt8385 Version-
   Mediatek ≫ Mt8395 Version-
   Mediatek ≫ Mt8666 Version-
   Mediatek ≫ Mt8667 Version-
   Mediatek ≫ Mt8673 Version-
   Mediatek ≫ Mt8696 Version-
   Mediatek ≫ Mt8755 Version-
   Mediatek ≫ Mt8765 Version-
   Mediatek ≫ Mt8766 Version-
   Mediatek ≫ Mt8768 Version-
   Mediatek ≫ Mt8771 Version-
   Mediatek ≫ Mt8775 Version-
   Mediatek ≫ Mt8781 Version-
   Mediatek ≫ Mt8786 Version-
   Mediatek ≫ Mt8788 Version-
   Mediatek ≫ Mt8789 Version-
   Mediatek ≫ Mt8791 Version-
   Mediatek ≫ Mt8791t Version-
   Mediatek ≫ Mt8795t Version-
   Mediatek ≫ Mt8797 Version-
   Mediatek ≫ Mt8798 Version-
   Mediatek ≫ Mt8871 Version-

Google ≫ Android Version13.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.041

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	6.7	0.8	5.9	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

https://corp.mediatek.com/product-security-bulletin/January-2024

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-32884

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-32884

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-32884

EUVD