Mediatek

Mt8791t

29 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-20790

  • EPSS 0.25%
  • Veröffentlicht 02.12.2025 02:34:09
  • Zuletzt bearbeitet 03.12.2025 20:32:19

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User i...

5.3

CVE-2025-20755

  • EPSS 0.29%
  • Veröffentlicht 02.12.2025 02:34:07
  • Zuletzt bearbeitet 03.12.2025 21:41:18

In Modem, there is a possible application crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. U...

5.3

CVE-2025-20792

  • EPSS 0.25%
  • Veröffentlicht 02.12.2025 02:34:02
  • Zuletzt bearbeitet 03.12.2025 20:32:41

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User i...

7.8

CVE-2025-20723

  • EPSS 0.01%
  • Veröffentlicht 14.10.2025 09:11:50
  • Zuletzt bearbeitet 15.10.2025 18:41:00

In gnss driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation...

5.5

CVE-2025-20722

  • EPSS 0.01%
  • Veröffentlicht 14.10.2025 09:11:48
  • Zuletzt bearbeitet 15.10.2025 18:45:07

In gnss driver, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ...

6.7

CVE-2025-20707

  • EPSS 0.01%
  • Veröffentlicht 01.09.2025 05:12:24
  • Zuletzt bearbeitet 03.09.2025 16:06:46

In geniezone, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALP...

7.5

CVE-2025-20666

  • EPSS 0.39%
  • Veröffentlicht 05.05.2025 02:49:10
  • Zuletzt bearbeitet 12.05.2025 18:15:44

In Modem, there is a possible system crash due to an uncaught exception. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User inter...

6.7

CVE-2025-20657

  • EPSS 0.03%
  • Veröffentlicht 07.04.2025 03:14:50
  • Zuletzt bearbeitet 18.04.2025 16:11:52

In vdec, there is a possible permission bypass due to improper input validation. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch I...

4.4

CVE-2024-20116

  • EPSS 0.03%
  • Veröffentlicht 02.12.2024 04:15:03
  • Zuletzt bearbeitet 22.04.2025 13:52:27

In cmdq, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09057438; Issue ID:...

6.7

CVE-2024-20121

  • EPSS 0.02%
  • Veröffentlicht 04.11.2024 02:15:17
  • Zuletzt bearbeitet 22.04.2025 13:54:35

In KeyInstall, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08956986; I...