Mediatek

Nr15

33 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-20069

  • EPSS 0.75%
  • Veröffentlicht 03.06.2024 02:15:08
  • Zuletzt bearbeitet 25.04.2025 18:38:24

In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not neede...

8.8

CVE-2024-20039

  • EPSS 5.44%
  • Veröffentlicht 01.04.2024 03:15:07
  • Zuletzt bearbeitet 23.04.2025 13:48:41

In modem protocol, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01240012...

7.5

CVE-2024-20004

  • EPSS 1.47%
  • Veröffentlicht 05.02.2024 06:15:47
  • Zuletzt bearbeitet 21.11.2024 08:51:46

In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent invalid NR RRC Connection Setup message, with no additional execution privileges needed. User interaction is n...

7.5

CVE-2024-20003

  • EPSS 1.4%
  • Veröffentlicht 05.02.2024 06:15:47
  • Zuletzt bearbeitet 21.11.2024 08:51:46

In Modem NL1, there is a possible system crash due to an improper input validation. This could lead to remote denial of service, if NW sent invalid NR RRC Connection Setup message, with no additional execution privileges needed. User interaction is n...

7.5

CVE-2023-32888

  • EPSS 1.97%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 16.05.2025 18:16:01

In Modem IMS Call UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01...

6.7

CVE-2023-32891

  • EPSS 0.02%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 18.06.2025 15:15:22

In bluetooth service, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS0...

7.5

CVE-2023-32890

  • EPSS 0.4%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 21.11.2024 08:04:16

In modem EMM, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01183647; Issu...

7.5

CVE-2023-32887

  • EPSS 1.46%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 16.06.2025 20:15:24

In Modem IMS Stack, there is a possible system crash due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY01161837; I...

7.5

CVE-2023-32886

  • EPSS 1.08%
  • Veröffentlicht 02.01.2024 03:15:08
  • Zuletzt bearbeitet 03.06.2025 15:15:31

In Modem IMS SMS UA, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY007...

9.8

CVE-2023-32874

  • EPSS 3.2%
  • Veröffentlicht 02.01.2024 03:15:07
  • Zuletzt bearbeitet 17.04.2025 19:15:55

In Modem IMS Stack, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: MOLY0116180...