Mediatek

Lr13

12 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-20678

  • EPSS 0.27%
  • Veröffentlicht 02.06.2025 02:29:47
  • Zuletzt bearbeitet 10.07.2025 17:38:15

In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. U...

7.5

CVE-2025-20667

  • EPSS 0.05%
  • Veröffentlicht 05.05.2025 02:49:11
  • Zuletzt bearbeitet 12.05.2025 18:15:44

In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges ...

7.5

CVE-2024-20150

  • EPSS 1.9%
  • Veröffentlicht 06.01.2025 04:15:07
  • Zuletzt bearbeitet 22.04.2025 13:50:21

In Modem, there is a possible system crash due to a logic error. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01412526; Issue ID: MSV-2018.

8.8

CVE-2024-20039

  • EPSS 5.44%
  • Veröffentlicht 01.04.2024 03:15:07
  • Zuletzt bearbeitet 23.04.2025 13:48:41

In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01240012...

7.5

CVE-2023-32890

  • EPSS 0.4%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 21.11.2024 08:04:16

In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01183647; Issu...

6.7

CVE-2023-32891

  • EPSS 0.02%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 18.06.2025 15:15:22

In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0...

9.8

CVE-2023-32874

  • EPSS 3.2%
  • Veröffentlicht 02.01.2024 03:15:07
  • Zuletzt bearbeitet 17.04.2025 19:15:55

In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY0116180...

9.8

CVE-2023-20819

  • EPSS 2.19%
  • Veröffentlicht 02.10.2023 03:15:09
  • Zuletzt bearbeitet 21.11.2024 07:41:36

In CDMA PPP protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privilege needed. User interaction is not needed for exploitation. Patch ID: M...

7.5

CVE-2022-26446

  • EPSS 1.77%
  • Veröffentlicht 08.11.2022 21:15:11
  • Zuletzt bearbeitet 01.05.2025 19:15:49

In Modem 4G RRC, there is a possible system crash due to improper input validation. This could lead to remote denial of service, when concatenating improper SIB12 (CMAS message), with no additional execution privileges needed. User interaction is not...

10

CVE-2022-21744

  • EPSS 3.36%
  • Veröffentlicht 06.07.2022 14:15:17
  • Zuletzt bearbeitet 21.11.2024 06:45:21

In Modem 2G RR, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding GPRS Packet Neighbour Cell Data (PNCD) improper neighbouring cell size with no additional execution privileg...